thr3ads.net - Secure testing commits - [Secure-testing-commits] r18470

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Feb-17 21:14 UTC
[Secure-testing-commits] r18470 - data/CVE

Author: joeyh
Date: 2012-02-17 21:14:26 +0000 (Fri, 17 Feb 2012)
New Revision: 18470

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-02-17 13:23:49 UTC (rev 18469)
+++ data/CVE/list	2012-02-17 21:14:26 UTC (rev 18470)
@@ -1,3 +1,5 @@
+CVE-2012-1189
+	RESERVED
 CVE-2012-1188
 	RESERVED
 CVE-2012-1187
@@ -940,8 +942,8 @@
 	RESERVED
 CVE-2012-0768
 	RESERVED
-CVE-2012-0767
-	RESERVED
+CVE-2012-0767 (Cross-site scripting (XSS) vulnerability in Adobe Flash Player
before ...)
+	TODO: check
 CVE-2012-0766 (The Shockwave 3D Asset component in Adobe Shockwave Player
before ...)
 	NOT-FOR-US: Adobe Shockwave Player
 CVE-2012-0765 (Multiple cross-site scripting (XSS) vulnerabilities in Adobe
RoboHelp ...)
@@ -962,23 +964,17 @@
 	NOT-FOR-US: Adobe Shockwave Player
 CVE-2012-0757 (The Shockwave 3D Asset component in Adobe Shockwave Player
before ...)
 	NOT-FOR-US: Adobe Shockwave Player
-CVE-2012-0756
-	RESERVED
+CVE-2012-0756 (Adobe Flash Player before 10.3.183.15 and 11.x before
11.1.102.62 on ...)
 	NOT-FOR-US: Adobe Flash
-CVE-2012-0755
-	RESERVED
+CVE-2012-0755 (Adobe Flash Player before 10.3.183.15 and 11.x before
11.1.102.62 on ...)
 	NOT-FOR-US: Adobe Flash
-CVE-2012-0754
-	RESERVED
+CVE-2012-0754 (Adobe Flash Player before 10.3.183.15 and 11.x before
11.1.102.62 on ...)
 	NOT-FOR-US: Adobe Flash
-CVE-2012-0753
-	RESERVED
+CVE-2012-0753 (Adobe Flash Player before 10.3.183.15 and 11.x before
11.1.102.62 on ...)
 	NOT-FOR-US: Adobe Flash
-CVE-2012-0752
-	RESERVED
+CVE-2012-0752 (Adobe Flash Player before 10.3.183.15 and 11.x before
11.1.102.62 on ...)
 	NOT-FOR-US: Adobe Flash
-CVE-2012-0751
-	RESERVED
+CVE-2012-0751 (The ActiveX control in Adobe Flash Player before 10.3.183.15 and
11.x ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2012-0750
 	RESERVED
@@ -1896,8 +1892,8 @@
 	RESERVED
 CVE-2012-0353
 	RESERVED
-CVE-2012-0352
-	RESERVED
+CVE-2012-0352 (Cisco NX-OS 4.2.x before 4.2(1)SV1(5.1) on Nexus 1000v series
...)
+	TODO: check
 CVE-2012-0351
 	RESERVED
 CVE-2012-0350
@@ -7543,7 +7539,7 @@
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2011-3403 (Microsoft Excel 2003 SP3 and Office 2004 for Mac do not properly
...)
 	NOT-FOR-US: Microsoft Excel
-CVE-2011-3402 (Unspecified vulnerability in the Win32k TrueType font parsing
engine ...)
+CVE-2011-3402 (Unspecified vulnerability in the TrueType font parsing engine in
...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2011-3401 (ENCDEC.DLL in Windows Media Player and Media Center in Microsoft
...)
 	NOT-FOR-US: Microsoft Media Player
@@ -8565,54 +8561,42 @@
 	RESERVED
 CVE-2011-3028
 	RESERVED
-CVE-2011-3027
-	RESERVED
+CVE-2011-3027 (Google Chrome before 17.0.963.56 does not properly perform a
cast of ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3026
-	RESERVED
+CVE-2011-3026 (Integer overflow in libpng, as used in Google Chrome before ...)
 	{DSA-2410-1}
 	- libpng 1.2.46-5 (high; bug #660026)
-CVE-2011-3025
-	RESERVED
-CVE-2011-3024
-	RESERVED
+CVE-2011-3025 (Google Chrome before 17.0.963.56 does not properly parse H.264
data, ...)
+	TODO: check
+CVE-2011-3024 (Google Chrome before 17.0.963.56 allows remote attackers to
cause a ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3023
-	RESERVED
+CVE-2011-3023 (Use-after-free vulnerability in Google Chrome before 17.0.963.56
...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3022
-	RESERVED
+CVE-2011-3022 (translate/translate_manager.cc in Google Chrome before
17.0.963.56 and ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3021
-	RESERVED
+CVE-2011-3021 (Use-after-free vulnerability in Google Chrome before 17.0.963.56
...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3020
-	RESERVED
+CVE-2011-3020 (Unspecified vulnerability in the Native Client validator ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3019
-	RESERVED
+CVE-2011-3019 (Heap-based buffer overflow in Google Chrome before 17.0.963.56
allows ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3018
-	RESERVED
+CVE-2011-3018 (Heap-based buffer overflow in Google Chrome before 17.0.963.56
allows ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3017
-	RESERVED
+CVE-2011-3017 (Use-after-free vulnerability in Google Chrome before 17.0.963.56
...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3016
-	RESERVED
+CVE-2011-3016 (Use-after-free vulnerability in Google Chrome before 17.0.963.56
...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
-CVE-2011-3015
-	RESERVED
+CVE-2011-3015 (Multiple integer overflows in the PDF codecs in Google Chrome
before ...)
 	- chromium-browser <unfixed>
 	- webkit <undetermined>
 CVE-2011-3014 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x
through ...)
Secure testing commits - Feb 2012 - r18470 - data/CVE

[Secure-testing-commits] r18470 - data/CVE
