Author: joeyh Date: 2012-05-16 21:14:50 +0000 (Wed, 16 May 2012) New Revision: 19259 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-16 14:02:31 UTC (rev 19258) +++ data/CVE/list 2012-05-16 21:14:50 UTC (rev 19259) @@ -1,3 +1,15 @@ +CVE-2012-2758 + RESERVED +CVE-2012-2757 + RESERVED +CVE-2012-2756 + RESERVED +CVE-2012-2755 + RESERVED +CVE-2012-2754 + RESERVED +CVE-2012-2753 + RESERVED CVE-2012-2752 RESERVED CVE-2012-2751 @@ -3532,12 +3544,12 @@ RESERVED CVE-2012-1249 RESERVED -CVE-2012-1248 - RESERVED -CVE-2012-1247 - RESERVED -CVE-2012-1246 - RESERVED +CVE-2012-1248 (app/config/core.php in baserCMS 1.6.15 and earlier does not properly ...) + TODO: check +CVE-2012-1247 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...) + TODO: check +CVE-2012-1246 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...) + TODO: check CVE-2012-1245 (Cross-site scripting (XSS) vulnerability in the cleanup_urls function ...) NOT-FOR-US: OSQA CVE-2012-1244 (The NTT DOCOMO sp mode mail application 5400 and earlier for Android ...) @@ -5066,24 +5078,24 @@ RESERVED CVE-2012-0672 (WebKit in Apple iOS before 5.1.1 allows remote attackers to execute ...) TODO: check -CVE-2012-0671 - RESERVED -CVE-2012-0670 - RESERVED -CVE-2012-0669 - RESERVED -CVE-2012-0668 - RESERVED -CVE-2012-0667 - RESERVED -CVE-2012-0666 - RESERVED -CVE-2012-0665 - RESERVED -CVE-2012-0664 - RESERVED -CVE-2012-0663 - RESERVED +CVE-2012-0671 (Apple QuickTime before 7.7.2 allows remote attackers to execute ...) + TODO: check +CVE-2012-0670 (Integer overflow in Apple QuickTime before 7.7.2 allows remote ...) + TODO: check +CVE-2012-0669 (Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows ...) + TODO: check +CVE-2012-0668 (Buffer overflow in Apple QuickTime before 7.7.2 allows remote ...) + TODO: check +CVE-2012-0667 (Integer signedness error in Apple QuickTime before 7.7.2 on Windows ...) + TODO: check +CVE-2012-0666 (Stack-based buffer overflow in the plugin in Apple QuickTime before ...) + TODO: check +CVE-2012-0665 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows ...) + TODO: check +CVE-2012-0664 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...) + TODO: check +CVE-2012-0663 (Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 ...) + TODO: check CVE-2012-0662 (Integer overflow in the Security Framework in Apple Mac OS X before ...) TODO: check CVE-2012-0661 (Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x ...) @@ -6190,8 +6202,8 @@ NOT-FOR-US: NTR ActiveX control CVE-2012-0266 (Multiple stack-based buffer overflows in the NTR ActiveX control ...) NOT-FOR-US: NTR ActiveX control -CVE-2012-0265 - RESERVED +CVE-2012-0265 (Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...) + TODO: check CVE-2011-5046 (The Graphics Device Interface (GDI) in win32k.sys in the kernel-mode ...) NOT-FOR-US: Microsoft Windows 7 CVE-2011-5045 (Cross-site scripting (XSS) vulnerability in details_view.php in PHP ...) @@ -12668,64 +12680,45 @@ RESERVED CVE-2011-3103 RESERVED -CVE-2011-3102 - RESERVED -CVE-2011-3101 - RESERVED +CVE-2011-3102 (Off-by-one error in libxml2, as used in Google Chrome before ...) + TODO: check +CVE-2011-3101 (Google Chrome before 19.0.1084.46 on Linux does not properly mitigate ...) - chromium-browser <unfixed> -CVE-2011-3100 - RESERVED +CVE-2011-3100 (Google Chrome before 19.0.1084.46 does not properly draw dash paths, ...) - chromium-browser <unfixed> -CVE-2011-3099 - RESERVED +CVE-2011-3099 (Use-after-free vulnerability in the PDF functionality in Google Chrome ...) - chromium-browser <unfixed> -CVE-2011-3098 - RESERVED +CVE-2011-3098 (Google Chrome before 19.0.1084.46 on Windows uses an incorrect search ...) - chromium-browser <not-affected> (Windows-specific) -CVE-2011-3097 - RESERVED +CVE-2011-3097 (The PDF functionality in Google Chrome before 19.0.1084.46 allows ...) - chromium-browser <unfixed> -CVE-2011-3096 - RESERVED +CVE-2011-3096 (Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on ...) - chromium-browser <unfixed> -CVE-2011-3095 - RESERVED +CVE-2011-3095 (The OGG container in Google Chrome before 19.0.1084.46 allows remote ...) - chromium-browser <unfixed> -CVE-2011-3094 - RESERVED +CVE-2011-3094 (Google Chrome before 19.0.1084.46 does not properly handle Tibetan ...) - chromium-browser <unfixed> -CVE-2011-3093 - RESERVED +CVE-2011-3093 (Google Chrome before 19.0.1084.46 does not properly handle glyphs, ...) - chromium-browser <unfixed> -CVE-2011-3092 - RESERVED +CVE-2011-3092 (The regex implementation in Google V8, as used in Google Chrome before ...) - libv8 <unfixed> -CVE-2011-3091 - RESERVED +CVE-2011-3091 (Use-after-free vulnerability in the IndexedDB implementation in Google ...) - chromium-browser <unfixed> -CVE-2011-3090 - RESERVED +CVE-2011-3090 (Race condition in Google Chrome before 19.0.1084.46 allows remote ...) - chromium-browser <unfixed> -CVE-2011-3089 - RESERVED +CVE-2011-3089 (Use-after-free vulnerability in Google Chrome before 19.0.1084.46 ...) - chromium-browser <unfixed> -CVE-2011-3088 - RESERVED +CVE-2011-3088 (Google Chrome before 19.0.1084.46 does not properly draw hairlines, ...) - chromium-browser <unfixed> -CVE-2011-3087 - RESERVED +CVE-2011-3087 (Google Chrome before 19.0.1084.46 does not properly perform window ...) - chromium-browser <unfixed> -CVE-2011-3086 - RESERVED +CVE-2011-3086 (Use-after-free vulnerability in Google Chrome before 19.0.1084.46 ...) - chromium-browser <unfixed> -CVE-2011-3085 - RESERVED +CVE-2011-3085 (The Autofill feature in Google Chrome before 19.0.1084.46 does not ...) - chromium-browser <unfixed> -CVE-2011-3084 - RESERVED +CVE-2011-3084 (Google Chrome before 19.0.1084.46 does not use a dedicated process for ...) - chromium-browser <unfixed> -CVE-2011-3083 - RESERVED +CVE-2011-3083 (browser/profiles/profile_impl_io_data.cc in Google Chrome before ...) - chromium-browser <unfixed> CVE-2011-3082 RESERVED