thr3ads.net - Secure testing commits - [Secure-testing-commits] r18628

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Mar-09 21:14 UTC
[Secure-testing-commits] r18628 - data/CVE

Author: joeyh
Date: 2012-03-09 21:14:23 +0000 (Fri, 09 Mar 2012)
New Revision: 18628

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-03-09 17:03:33 UTC (rev 18627)
+++ data/CVE/list	2012-03-09 21:14:23 UTC (rev 18628)
@@ -1,3 +1,93 @@
+CVE-2012-1545 (Microsoft Internet Explorer 6 through 9, and 10 Consumer
Preview, ...)
+	TODO: check
+CVE-2012-1544 (Heap-based buffer overflow in Microsoft Internet Explorer 6
through 9, ...)
+	TODO: check
+CVE-2012-1543
+	RESERVED
+CVE-2012-1542
+	RESERVED
+CVE-2012-1541
+	RESERVED
+CVE-2012-1540
+	RESERVED
+CVE-2012-1539
+	RESERVED
+CVE-2012-1538
+	RESERVED
+CVE-2012-1537
+	RESERVED
+CVE-2012-1536
+	RESERVED
+CVE-2012-1535
+	RESERVED
+CVE-2012-1534
+	RESERVED
+CVE-2012-1533
+	RESERVED
+CVE-2012-1532
+	RESERVED
+CVE-2012-1531
+	RESERVED
+CVE-2012-1530
+	RESERVED
+CVE-2012-1529
+	RESERVED
+CVE-2012-1528
+	RESERVED
+CVE-2012-1527
+	RESERVED
+CVE-2012-1526
+	RESERVED
+CVE-2012-1525
+	RESERVED
+CVE-2012-1524
+	RESERVED
+CVE-2012-1523
+	RESERVED
+CVE-2012-1522
+	RESERVED
+CVE-2012-1521
+	RESERVED
+CVE-2012-1520
+	RESERVED
+CVE-2012-1519
+	RESERVED
+CVE-2012-1518
+	RESERVED
+CVE-2012-1517
+	RESERVED
+CVE-2012-1516
+	RESERVED
+CVE-2012-1515
+	RESERVED
+CVE-2012-1514
+	RESERVED
+CVE-2012-1513
+	RESERVED
+CVE-2012-1512
+	RESERVED
+CVE-2012-1511
+	RESERVED
+CVE-2012-1510
+	RESERVED
+CVE-2012-1509
+	RESERVED
+CVE-2012-1508
+	RESERVED
+CVE-2012-1507
+	RESERVED
+CVE-2012-1506
+	RESERVED
+CVE-2012-1505
+	RESERVED
+CVE-2012-1504
+	RESERVED
+CVE-2012-1503
+	RESERVED
+CVE-2012-1502
+	RESERVED
+CVE-2012-1501
+	RESERVED
 CVE-2012-1500
 	RESERVED
 CVE-2012-1499
@@ -1990,134 +2080,134 @@
 	RESERVED
 CVE-2012-0649
 	RESERVED
-CVE-2012-0648
-	RESERVED
+CVE-2012-0648 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
 CVE-2012-0647
 	RESERVED
-CVE-2012-0646
-	RESERVED
-CVE-2012-0645
-	RESERVED
-CVE-2012-0644
-	RESERVED
-CVE-2012-0643
-	RESERVED
-CVE-2012-0642
-	RESERVED
-CVE-2012-0641
-	RESERVED
+CVE-2012-0646 (Format string vulnerability in VPN in Apple iOS before 5.1
allows ...)
+	TODO: check
+CVE-2012-0645 (Siri in Apple iOS before 5.1 does not properly restrict the
ability of ...)
+	TODO: check
+CVE-2012-0644 (Race condition in the Passcode Lock feature in Apple iOS before
5.1 ...)
+	TODO: check
+CVE-2012-0643 (The kernel in Apple iOS before 5.1 does not properly handle
debug ...)
+	TODO: check
+CVE-2012-0642 (Integer underflow in Apple iOS before 5.1 allows remote
attackers to ...)
+	TODO: check
+CVE-2012-0641 (CFNetwork in Apple iOS before 5.1 does not properly construct
request ...)
+	TODO: check
 CVE-2012-0640
 	RESERVED
-CVE-2012-0639
-	RESERVED
-CVE-2012-0638
-	RESERVED
-CVE-2012-0637
-	RESERVED
-CVE-2012-0636
-	RESERVED
-CVE-2012-0635
-	RESERVED
-CVE-2012-0634
-	RESERVED
-CVE-2012-0633
-	RESERVED
-CVE-2012-0632
-	RESERVED
-CVE-2012-0631
-	RESERVED
-CVE-2012-0630
-	RESERVED
-CVE-2012-0629
-	RESERVED
-CVE-2012-0628
-	RESERVED
-CVE-2012-0627
-	RESERVED
-CVE-2012-0626
-	RESERVED
-CVE-2012-0625
-	RESERVED
-CVE-2012-0624
-	RESERVED
-CVE-2012-0623
-	RESERVED
-CVE-2012-0622
-	RESERVED
-CVE-2012-0621
-	RESERVED
-CVE-2012-0620
-	RESERVED
-CVE-2012-0619
-	RESERVED
-CVE-2012-0618
-	RESERVED
-CVE-2012-0617
-	RESERVED
-CVE-2012-0616
-	RESERVED
-CVE-2012-0615
-	RESERVED
-CVE-2012-0614
-	RESERVED
-CVE-2012-0613
-	RESERVED
-CVE-2012-0612
-	RESERVED
-CVE-2012-0611
-	RESERVED
-CVE-2012-0610
-	RESERVED
-CVE-2012-0609
-	RESERVED
-CVE-2012-0608
-	RESERVED
-CVE-2012-0607
-	RESERVED
-CVE-2012-0606
-	RESERVED
-CVE-2012-0605
-	RESERVED
-CVE-2012-0604
-	RESERVED
-CVE-2012-0603
-	RESERVED
-CVE-2012-0602
-	RESERVED
-CVE-2012-0601
-	RESERVED
-CVE-2012-0600
-	RESERVED
-CVE-2012-0599
-	RESERVED
-CVE-2012-0598
-	RESERVED
-CVE-2012-0597
-	RESERVED
-CVE-2012-0596
-	RESERVED
-CVE-2012-0595
-	RESERVED
-CVE-2012-0594
-	RESERVED
-CVE-2012-0593
-	RESERVED
-CVE-2012-0592
-	RESERVED
-CVE-2012-0591
-	RESERVED
-CVE-2012-0590
-	RESERVED
-CVE-2012-0589
-	RESERVED
-CVE-2012-0588
-	RESERVED
-CVE-2012-0587
-	RESERVED
-CVE-2012-0586
-	RESERVED
-CVE-2012-0585
-	RESERVED
+CVE-2012-0639 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
+CVE-2012-0638 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
+CVE-2012-0637 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
+CVE-2012-0636 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
+CVE-2012-0635 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0634 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
+CVE-2012-0633 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0632 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0631 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0630 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0629 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0628 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0627 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0626 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0625 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0624 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0623 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0622 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0621 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0620 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0619 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0618 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0617 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0616 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0615 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0614 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0613 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0612 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0611 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0610 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0609 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0608 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0607 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0606 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0605 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0604 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0603 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0602 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0601 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0600 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0599 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0598 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0597 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0596 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0595 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0594 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0593 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0592 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0591 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2012-0590 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+	TODO: check
+CVE-2012-0589 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+	TODO: check
+CVE-2012-0588 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+	TODO: check
+CVE-2012-0587 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+	TODO: check
+CVE-2012-0586 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+	TODO: check
+CVE-2012-0585 (The Private Browsing feature in Safari in Apple iOS before 5.1
allows ...)
+	TODO: check
 CVE-2012-0584
 	RESERVED
 CVE-2012-0583
@@ -2750,12 +2840,12 @@
 	RESERVED
 CVE-2012-0326
 	RESERVED
-CVE-2012-0325
-	RESERVED
-CVE-2012-0324
-	RESERVED
-CVE-2012-0323
-	RESERVED
+CVE-2012-0325 (Cross-site scripting (XSS) vulnerability in CloudBees Jenkins
before ...)
+	TODO: check
+CVE-2012-0324 (Cross-site scripting (XSS) vulnerability in CloudBees Jenkins
before ...)
+	TODO: check
+CVE-2012-0323 (Cross-site scripting (XSS) vulnerability in the Autocomplete
plugin ...)
+	TODO: check
 CVE-2012-0322 (The EStrongs ES File Explorer application 1.6.0.2 through
1.6.1.1 for ...)
 	TODO: check
 CVE-2012-0321 (Unspecified vulnerability in the device driver in Kingsoft
Internet ...)
@@ -2816,8 +2906,8 @@
 	RESERVED
 CVE-2012-0293
 	RESERVED
-CVE-2012-0292
-	RESERVED
+CVE-2012-0292 (The awhost32 service in Symantec pcAnywhere through 12.5.3,
Altiris IT ...)
+	TODO: check
 CVE-2012-0291 (Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite
...)
 	NOT-FOR-US: pcAnywhere
 CVE-2012-0290 (Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite
...)
@@ -3373,8 +3463,8 @@
 	- imagemagick 8:6.6.9.7-6 (bug #659339)
 CVE-2012-0246
 	RESERVED
-CVE-2012-0245
-	RESERVED
+CVE-2012-0245 (Multiple stack-based buffer overflows in RobNetScanHost.exe in
ABB ...)
+	TODO: check
 CVE-2012-0244 (Multiple SQL injection vulnerabilities in Advantech/BroadWin
WebAccess ...)
 	NOT-FOR-US: Advantech/BroadWin WebAccess
 CVE-2012-0243 (Buffer overflow in an ActiveX control in bwocxrun.ocx in ...)
@@ -7169,10 +7259,10 @@
 	RESERVED
 CVE-2011-3846
 	RESERVED
-CVE-2011-3845
-	RESERVED
-CVE-2011-3844
-	RESERVED
+CVE-2011-3845 (Use-after-free vulnerability in Apple Safari 5.1.2, when a
plug-in ...)
+	TODO: check
+CVE-2011-3844 (Apple Safari 5.0.5 does not properly implement the setInterval
...)
+	TODO: check
 CVE-2011-3843
 	RESERVED
 CVE-2011-3842
@@ -9390,8 +9480,7 @@
 	RESERVED
 CVE-2011-3047
 	RESERVED
-CVE-2011-3046
-	RESERVED
+CVE-2011-3046 (The extension subsystem in Google Chrome before 17.0.963.78 does
not ...)
 	- chromium-browser 17.0.963.78~r125577-1
 CVE-2011-3045
 	RESERVED
@@ -10004,22 +10093,22 @@
 	- chromium-browser 14.0.835.163~r101024-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <not-affected> (chromium specific)
-CVE-2011-2873
-	RESERVED
-CVE-2011-2872
-	RESERVED
-CVE-2011-2871
-	RESERVED
-CVE-2011-2870
-	RESERVED
-CVE-2011-2869
-	RESERVED
-CVE-2011-2868
-	RESERVED
-CVE-2011-2867
-	RESERVED
-CVE-2011-2866
-	RESERVED
+CVE-2011-2873 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2872 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2871 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2870 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2869 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2868 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2867 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
+CVE-2011-2866 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
+	TODO: check
 CVE-2011-2865
 	RESERVED
 CVE-2011-2864 (Google Chrome before 14.0.835.163 does not properly handle
Tibetan ...)
@@ -10143,8 +10232,8 @@
 	{DSA-2394-1}
 	- libxml2 2.7.8.dfsg-5 (low; bug #643648)
 	[squeeze] - libxml2 <no-dsa> (denial-of-service only issue)
-CVE-2011-2833
-	RESERVED
+CVE-2011-2833 (WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6,
allows ...)
+	TODO: check
 CVE-2011-2832
 	RESERVED
 CVE-2011-2831 (WebKit, as used in Apple iTunes before 10.5, allows
man-in-the-middle ...)
Secure testing commits - Mar 2012 - r18628 - data/CVE

[Secure-testing-commits] r18628 - data/CVE
