Author: joeyh Date: 2012-01-26 21:14:46 +0000 (Thu, 26 Jan 2012) New Revision: 18306 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-01-26 21:01:45 UTC (rev 18305) +++ data/CVE/list 2012-01-26 21:14:46 UTC (rev 18306) @@ -273,8 +273,7 @@ RESERVED CVE-2012-0786 RESERVED -CVE-2012-0885 [AST-2012-001 asterisk srtp remote crash] - RESERVED +CVE-2012-0885 (chan_sip.c in Asterisk Open Source 1.8.x before 1.8.8.2 and 10.x ...) - asterisk 1:1.8.8.2~dfsg-1 (bug #656596) [squeeze] - asterisk <not-affected> (Vulnerable code not present) [lenny] - asterisk <not-affected> (Vulnerable code not present) @@ -4045,8 +4044,8 @@ - moodle 1.9.9.dfsg2-3 CVE-2011-4277 (Cross-site scripting (XSS) vulnerability in CourseForum ProjectForum ...) NOT-FOR-US: CourseForum -CVE-2011-4276 - RESERVED +CVE-2011-4276 (The Bluetooth service (com/android/phone/BluetoothHeadsetService.java) ...) + TODO: check CVE-2011-4275 (Multiple cross-site scripting (XSS) vulnerabilities in iTop (aka IT ...) NOT-FOR-US: IT Operations Portal CVE-2011-4274 (Cross-site scripting (XSS) vulnerability in the A-Form PC and ...) @@ -4546,7 +4545,7 @@ CVE-2011-4124 RESERVED CVE-2011-4123 - RESERVED + REJECTED CVE-2011-4122 (Directory traversal vulnerability in openpam_configure.c in OpenPAM ...) NOT-FOR-US: OpenPAM CVE-2011-4121 @@ -6571,11 +6570,9 @@ - kolab-cyrus-imapd <unfixed> CVE-2011-3480 RESERVED -CVE-2011-3479 - RESERVED +CVE-2011-3479 (Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite ...) NOT-FOR-US: Symantec pcAnywhere -CVE-2011-3478 - RESERVED +CVE-2011-3478 (The host-services component in Symantec pcAnywhere 12.5.x through ...) NOT-FOR-US: Symantec pcAnywhere CVE-2011-3477 RESERVED