Author: joeyh Date: 2012-03-14 21:14:32 +0000 (Wed, 14 Mar 2012) New Revision: 18675 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-03-14 17:48:50 UTC (rev 18674) +++ data/CVE/list 2012-03-14 21:14:32 UTC (rev 18675) @@ -1,3 +1,7 @@ +CVE-2012-1663 (Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows ...) + TODO: check +CVE-2012-1662 + RESERVED CVE-2012-1661 RESERVED CVE-2012-1660 @@ -365,20 +369,20 @@ RESERVED CVE-2012-1481 RESERVED -CVE-2012-1480 - RESERVED -CVE-2012-1479 - RESERVED -CVE-2012-1478 - RESERVED -CVE-2012-1477 - RESERVED -CVE-2012-1476 - RESERVED -CVE-2012-1475 - RESERVED -CVE-2012-1474 - RESERVED +CVE-2012-1480 (Unspecified vulnerability in the Pansi SMS (com.pansi.msg) application ...) + TODO: check +CVE-2012-1479 (Unspecified vulnerability in the AContact (com.movester.quickcontact) ...) + TODO: check +CVE-2012-1478 (Unspecified vulnerability in the UCMobile BloveStorm (com.blovestorm) ...) + TODO: check +CVE-2012-1477 (Unspecified vulnerability in the Cnectd (mci.cnectd) application 3.1.0 ...) + TODO: check +CVE-2012-1476 (Unspecified vulnerability in the KKtalk (com.kkliaotian.android) ...) + TODO: check +CVE-2012-1475 (Unspecified vulnerability in the YagattaTalk Messenger ...) + TODO: check +CVE-2012-1474 (Unspecified vulnerability in the Youni SMS (com.snda.youni) ...) + TODO: check CVE-2012-1473 RESERVED CVE-2012-1472 (VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not ...) @@ -507,10 +511,10 @@ RESERVED CVE-2012-1410 (Multiple cross-site scripting (XSS) vulnerabilities in the History ...) TODO: check -CVE-2012-1409 - RESERVED -CVE-2012-1408 - RESERVED +CVE-2012-1409 (Unspecified vulnerability in the Tiny Password ...) + TODO: check +CVE-2012-1408 (Unspecified vulnerability in the App Lock (com.cc.applock) application ...) + TODO: check CVE-2012-1407 (Unspecified vulnerability in the GO Message Widget ...) TODO: check CVE-2012-1406 (Unspecified vulnerability in the GO Bookmark Widget ...) @@ -2064,8 +2068,8 @@ RESERVED CVE-2012-0771 RESERVED -CVE-2012-0770 - RESERVED +CVE-2012-0770 (Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for ...) + TODO: check CVE-2012-0769 (Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on ...) TODO: check CVE-2012-0768 (The Matrix3D component in Adobe Flash Player before 10.3.183.16 and ...) @@ -2815,6 +2819,7 @@ - iceweasel 10.0.3esr-1 - iceape <unfixed> CVE-2012-0454 + RESERVED - iceweasel <not-affected> (Only affects Firefox on Windows) CVE-2012-0453 (Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in ...) - bugzilla <removed> @@ -4199,18 +4204,18 @@ RESERVED CVE-2012-0158 RESERVED -CVE-2012-0157 - RESERVED -CVE-2012-0156 - RESERVED +CVE-2012-0157 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...) + TODO: check +CVE-2012-0156 (DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, ...) + TODO: check CVE-2012-0155 (Microsoft Internet Explorer 9 does not properly handle objects in ...) NOT-FOR-US: Microsoft CVE-2012-0154 (Use-after-free vulnerability in win32k.sys in the kernel-mode drivers ...) NOT-FOR-US: Microsoft CVE-2012-0153 RESERVED -CVE-2012-0152 - RESERVED +CVE-2012-0152 (The Remote Desktop Protocol (RDP) service in Microsoft Windows Server ...) + TODO: check CVE-2012-0151 RESERVED CVE-2012-0150 (Buffer overflow in msvcrt.dll in Microsoft Windows Vista SP2, Windows ...) @@ -4265,14 +4270,14 @@ RESERVED CVE-2012-0125 RESERVED -CVE-2012-0124 - RESERVED -CVE-2012-0123 - RESERVED -CVE-2012-0122 - RESERVED -CVE-2012-0121 - RESERVED +CVE-2012-0124 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...) + TODO: check +CVE-2012-0123 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...) + TODO: check +CVE-2012-0122 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...) + TODO: check +CVE-2012-0121 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...) + TODO: check CVE-2011-4814 (Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 ...) - dolibarr <itp> (bug #634783) CVE-2011-4813 (Directory traversal vulnerability in clientarea.php in ...) @@ -5534,8 +5539,8 @@ RESERVED CVE-2012-0017 (Cross-site scripting (XSS) vulnerability in inplview.aspx in Microsoft ...) NOT-FOR-US: Microsoft -CVE-2012-0016 - RESERVED +CVE-2012-0016 (Untrusted search path vulnerability in Microsoft Expression Design; ...) + TODO: check CVE-2012-0015 (Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly calculate ...) NOT-FOR-US: Microsoft CVE-2012-0014 (Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4, and Silverlight 4 ...) @@ -5550,20 +5555,20 @@ NOT-FOR-US: Microsoft CVE-2012-0009 (Untrusted search path vulnerability in the Windows Object Packager ...) NOT-FOR-US: Microsoft Windows -CVE-2012-0008 - RESERVED +CVE-2012-0008 (Untrusted search path vulnerability in Microsoft Visual Studio 2008 ...) + TODO: check CVE-2012-0007 (The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 ...) NOT-FOR-US: Microsoft Anti-Cross Site Scripting Library -CVE-2012-0006 - RESERVED +CVE-2012-0006 (The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 ...) + TODO: check CVE-2012-0005 (The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 ...) NOT-FOR-US: Microsoft Windows CVE-2012-0004 (Unspecified vulnerability in DirectShow in DirectX in Microsoft ...) NOT-FOR-US: DirectX CVE-2012-0003 (Unspecified vulnerability in winmm.dll in Windows Multimedia Library ...) NOT-FOR-US: Microsoft Windows -CVE-2012-0002 - RESERVED +CVE-2012-0002 (The Remote Desktop Protocol (RDP) implementation in Microsoft Windows ...) + TODO: check CVE-2012-0001 (The kernel in Microsoft Windows XP SP2, Windows Server 2003 SP2, ...) NOT-FOR-US: Microsoft Windows CVE-2011-4436 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)