thr3ads.net - Secure testing commits - [Secure-testing-commits] r18667

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Mar-13 21:15 UTC
[Secure-testing-commits] r18667 - data/CVE

Author: joeyh
Date: 2012-03-13 21:14:59 +0000 (Tue, 13 Mar 2012)
New Revision: 18667

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-03-13 19:35:22 UTC (rev 18666)
+++ data/CVE/list	2012-03-13 21:14:59 UTC (rev 18667)
@@ -1,3 +1,213 @@
+CVE-2012-1661
+	RESERVED
+CVE-2012-1660
+	RESERVED
+CVE-2012-1659
+	RESERVED
+CVE-2012-1658
+	RESERVED
+CVE-2012-1657
+	RESERVED
+CVE-2012-1656
+	RESERVED
+CVE-2012-1655
+	RESERVED
+CVE-2012-1654
+	RESERVED
+CVE-2012-1653
+	RESERVED
+CVE-2012-1652
+	RESERVED
+CVE-2012-1651
+	RESERVED
+CVE-2012-1650
+	RESERVED
+CVE-2012-1649
+	RESERVED
+CVE-2012-1648
+	RESERVED
+CVE-2012-1647
+	RESERVED
+CVE-2012-1646
+	RESERVED
+CVE-2012-1645
+	RESERVED
+CVE-2012-1644
+	RESERVED
+CVE-2012-1643
+	RESERVED
+CVE-2012-1642
+	RESERVED
+CVE-2012-1641
+	RESERVED
+CVE-2012-1640
+	RESERVED
+CVE-2012-1639
+	RESERVED
+CVE-2012-1638
+	RESERVED
+CVE-2012-1637
+	RESERVED
+CVE-2012-1636
+	RESERVED
+CVE-2012-1635
+	RESERVED
+CVE-2012-1634
+	RESERVED
+CVE-2012-1633
+	RESERVED
+CVE-2012-1632
+	RESERVED
+CVE-2012-1631
+	RESERVED
+CVE-2012-1630
+	RESERVED
+CVE-2012-1629
+	RESERVED
+CVE-2012-1628
+	RESERVED
+CVE-2012-1627
+	RESERVED
+CVE-2012-1626
+	RESERVED
+CVE-2012-1625
+	RESERVED
+CVE-2012-1624
+	RESERVED
+CVE-2012-1623
+	RESERVED
+CVE-2012-1622
+	RESERVED
+CVE-2012-1621
+	RESERVED
+CVE-2012-1620
+	RESERVED
+CVE-2012-1619
+	RESERVED
+CVE-2012-1618
+	RESERVED
+CVE-2012-1617
+	RESERVED
+CVE-2012-1616
+	RESERVED
+CVE-2012-1615
+	RESERVED
+CVE-2012-1614
+	RESERVED
+CVE-2012-1613
+	RESERVED
+CVE-2012-1612
+	RESERVED
+CVE-2012-1611
+	RESERVED
+CVE-2012-1610
+	RESERVED
+CVE-2012-1609
+	RESERVED
+CVE-2012-1608
+	RESERVED
+CVE-2012-1607
+	RESERVED
+CVE-2012-1606
+	RESERVED
+CVE-2012-1605
+	RESERVED
+CVE-2012-1604
+	RESERVED
+CVE-2012-1603
+	RESERVED
+CVE-2012-1602
+	RESERVED
+CVE-2012-1601
+	RESERVED
+CVE-2012-1600
+	RESERVED
+CVE-2012-1599
+	RESERVED
+CVE-2012-1598
+	RESERVED
+CVE-2012-1597
+	RESERVED
+CVE-2012-1596
+	RESERVED
+CVE-2012-1595
+	RESERVED
+CVE-2012-1594
+	RESERVED
+CVE-2012-1593
+	RESERVED
+CVE-2012-1592
+	RESERVED
+CVE-2012-1591
+	RESERVED
+CVE-2012-1590
+	RESERVED
+CVE-2012-1589
+	RESERVED
+CVE-2012-1588
+	RESERVED
+CVE-2012-1587
+	RESERVED
+CVE-2012-1586
+	RESERVED
+CVE-2012-1585
+	RESERVED
+CVE-2012-1584
+	RESERVED
+CVE-2012-1583
+	RESERVED
+CVE-2012-1582
+	RESERVED
+CVE-2012-1581
+	RESERVED
+CVE-2012-1580
+	RESERVED
+CVE-2012-1579
+	RESERVED
+CVE-2012-1578
+	RESERVED
+CVE-2012-1577
+	RESERVED
+CVE-2012-1576
+	RESERVED
+CVE-2012-1575
+	RESERVED
+CVE-2012-1574
+	RESERVED
+CVE-2012-1573
+	RESERVED
+CVE-2012-1572
+	RESERVED
+CVE-2012-1571
+	RESERVED
+CVE-2012-1570
+	RESERVED
+CVE-2012-1569
+	RESERVED
+CVE-2012-1568
+	RESERVED
+CVE-2012-1567
+	RESERVED
+CVE-2012-1566
+	RESERVED
+CVE-2012-1565
+	RESERVED
+CVE-2012-1564
+	RESERVED
+CVE-2012-1563
+	RESERVED
+CVE-2012-1562
+	RESERVED
+CVE-2012-1561
+	RESERVED
+CVE-2012-1560
+	RESERVED
+CVE-2012-1559
+	RESERVED
+CVE-2012-1558 (yaSSL CyaSSL before 2.0.8 allows remote attackers to cause a
denial of ...)
+	TODO: check
+CVE-2012-1557 (SQL injection vulnerability in admin/plib/api-rpc/Agent.php in
...)
+	TODO: check
 CVE-2012-1556
 	RESERVED
 CVE-2012-1555
@@ -171,8 +381,8 @@
 	RESERVED
 CVE-2012-1473
 	RESERVED
-CVE-2012-1472
-	RESERVED
+CVE-2012-1472 (VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does
not ...)
+	TODO: check
 CVE-2012-1471
 	RESERVED
 CVE-2012-1470
@@ -1028,10 +1238,10 @@
 	- systemd 43-1 (bug #662029)
 CVE-2012-1100
 	RESERVED
-CVE-2012-1099
-	RESERVED
-CVE-2012-1098
-	RESERVED
+CVE-2012-1099 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
+CVE-2012-1098 (Cross-site scripting (XSS) vulnerability in Ruby on Rails 3.0.x
before ...)
+	TODO: check
 CVE-2012-1097
 	RESERVED
 	- linux-2.6 <unfixed> (low)
@@ -1522,8 +1732,8 @@
 	{DSA-2387-1}
 	- simplesamlphp 1.8.2-1
 	NOTE: http://code.google.com/p/simplesamlphp/issues/detail?id=468
-CVE-2012-0884
-	RESERVED
+CVE-2012-0884 (The implementation of Cryptographic Message Syntax (CMS) and
PKCS #7 ...)
+	TODO: check
 CVE-2012-0883
 	RESERVED
 CVE-2012-0882
@@ -2039,14 +2249,14 @@
 	RESERVED
 CVE-2012-0691
 	RESERVED
-CVE-2012-0690
-	RESERVED
-CVE-2012-0689
-	RESERVED
-CVE-2012-0688
-	RESERVED
-CVE-2012-0687
-	RESERVED
+CVE-2012-0690 (TIBCO Spotfire Web Application, Web Player Application,
Automation ...)
+	TODO: check
+CVE-2012-0689 (The server in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric
...)
+	TODO: check
+CVE-2012-0688 (Cross-site scripting (XSS) vulnerability in TIBCO ActiveMatrix
...)
+	TODO: check
+CVE-2012-0687 (TIBCO ActiveMatrix Runtime Platform in Service Grid and Service
Bus ...)
+	TODO: check
 CVE-2012-0686
 	RESERVED
 CVE-2012-0685
@@ -2125,8 +2335,8 @@
 	RESERVED
 CVE-2012-0648 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
 	TODO: check
-CVE-2012-0647
-	RESERVED
+CVE-2012-0647 (WebKit in Apple Safari before 5.1.4 does not properly handle
redirects ...)
+	TODO: check
 CVE-2012-0646 (Format string vulnerability in VPN in Apple iOS before 5.1
allows ...)
 	TODO: check
 CVE-2012-0645 (Siri in Apple iOS before 5.1 does not properly restrict the
ability of ...)
@@ -2139,8 +2349,8 @@
 	TODO: check
 CVE-2012-0641 (CFNetwork in Apple iOS before 5.1 does not properly construct
request ...)
 	TODO: check
-CVE-2012-0640
-	RESERVED
+CVE-2012-0640 (WebKit in Apple Safari before 5.1.4 does not properly implement
&quot;From ...)
+	TODO: check
 CVE-2012-0639 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
 	TODO: check
 CVE-2012-0638 (WebKit, as used in Apple iTunes before 10.6, allows
man-in-the-middle ...)
@@ -2251,8 +2461,8 @@
 	TODO: check
 CVE-2012-0585 (The Private Browsing feature in Safari in Apple iOS before 5.1
allows ...)
 	TODO: check
-CVE-2012-0584
-	RESERVED
+CVE-2012-0584 (The Internationalized Domain Name (IDN) feature in Apple Safari
before ...)
+	TODO: check
 CVE-2012-0583
 	RESERVED
 CVE-2012-0582
@@ -3816,8 +4026,8 @@
 	RESERVED
 CVE-2012-0196
 	RESERVED
-CVE-2012-0195
-	RESERVED
+CVE-2012-0195 (Cross-site scripting (XSS) vulnerability in the Start Center
Layout ...)
+	TODO: check
 CVE-2012-0194 (The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the
Large ...)
 	NOT-FOR-US: AIX
 CVE-2012-0193 (IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.43, 6.1
...)
@@ -3873,14 +4083,14 @@
 	RESERVED
 CVE-2011-4820
 	RESERVED
-CVE-2011-4819
-	RESERVED
-CVE-2011-4818
-	RESERVED
-CVE-2011-4817
-	RESERVED
-CVE-2011-4816
-	RESERVED
+CVE-2011-4819 (Multiple cross-site scripting (XSS) vulnerabilities in IBM
Maximo ...)
+	TODO: check
+CVE-2011-4818 (Open redirect vulnerability in IBM Maximo Asset Management and
Asset ...)
+	TODO: check
+CVE-2011-4817 (The About option on the Help menu in IBM Maximo Asset Management
and ...)
+	TODO: check
+CVE-2011-4816 (SQL injection vulnerability in the KPI component in IBM Maximo
Asset ...)
+	TODO: check
 CVE-2011-4815 (Ruby (aka CRuby) before 1.8.7-p357 computes hash values without
...)
 	- ruby1.8 <unfixed>
 	- ruby1.9 <not-affected> (Includes randomisation of the hash function)
@@ -14463,14 +14673,14 @@
 	RESERVED
 CVE-2011-1398
 	RESERVED
-CVE-2011-1397
-	RESERVED
-CVE-2011-1396
-	RESERVED
-CVE-2011-1395
-	RESERVED
-CVE-2011-1394
-	RESERVED
+CVE-2011-1397 (Cross-site request forgery (CSRF) vulnerability in the Labor
Reporting ...)
+	TODO: check
+CVE-2011-1396 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset
...)
+	TODO: check
+CVE-2011-1395 (Cross-site scripting (XSS) vulnerability in imicon.jsp in IBM
Maximo ...)
+	TODO: check
+CVE-2011-1394 (IBM Maximo Asset Management and Asset Management Essentials 6.2,
7.1, ...)
+	TODO: check
 CVE-2011-1393 (Unspecified vulnerability in the authentication functionality in
the ...)
 	NOT-FOR-US: IBM Lotus Domino
 CVE-2011-1392 (The Blueberry FlashBack ActiveX control in BB FlashBack
Recorder.dll ...)
Secure testing commits - Mar 2012 - r18667 - data/CVE

[Secure-testing-commits] r18667 - data/CVE
