thr3ads.net - Secure testing commits - [Secure-testing-commits] r18728

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Mar-21 21:14 UTC
[Secure-testing-commits] r18728 - data/CVE

Author: joeyh
Date: 2012-03-21 21:14:42 +0000 (Wed, 21 Mar 2012)
New Revision: 18728

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-03-21 19:02:17 UTC (rev 18727)
+++ data/CVE/list	2012-03-21 21:14:42 UTC (rev 18728)
@@ -1,3 +1,13 @@
+CVE-2012-1797 (IBM DB2 9.5 uses world-writable permissions for nodes.reg, which
has ...)
+	TODO: check
+CVE-2012-1796 (Unspecified vulnerability in IBM Tivoli Monitoring Agent (ITMA),
as ...)
+	TODO: check
+CVE-2012-1795 (webglimpse.cgi in Webglimpse before 2.20.0 allows remote
attackers to ...)
+	TODO: check
+CVE-2012-1794
+	RESERVED
+CVE-2012-1793
+	RESERVED
 CVE-2012-1792
 	RESERVED
 CVE-2012-1791
@@ -460,6 +470,7 @@
 	RESERVED
 CVE-2012-1571 [CDF crasher bugs in file, found by CERT/CC BFF tool]
 	RESERVED
+	{DSA-2422-1}
 	- file <unfixed> (low)
 	[squeeze] - file 5.04-5+squeeze1
 CVE-2012-1570
@@ -687,96 +698,96 @@
 	NOT-FOR-US: NetMechanica NetDecision
 CVE-2012-1464 (Dashboard Server for NetMechanica NetDecision before 4.6.1
allows ...)
 	NOT-FOR-US: NetMechanica NetDecision
-CVE-2012-1463
-	RESERVED
-CVE-2012-1462
-	RESERVED
-CVE-2012-1461
-	RESERVED
-CVE-2012-1460
-	RESERVED
-CVE-2012-1459
-	RESERVED
-CVE-2012-1458
-	RESERVED
-CVE-2012-1457
-	RESERVED
-CVE-2012-1456
-	RESERVED
-CVE-2012-1455
-	RESERVED
-CVE-2012-1454
-	RESERVED
-CVE-2012-1453
-	RESERVED
-CVE-2012-1452
-	RESERVED
-CVE-2012-1451
-	RESERVED
-CVE-2012-1450
-	RESERVED
-CVE-2012-1449
-	RESERVED
-CVE-2012-1448
-	RESERVED
-CVE-2012-1447
-	RESERVED
-CVE-2012-1446
-	RESERVED
-CVE-2012-1445
-	RESERVED
-CVE-2012-1444
-	RESERVED
-CVE-2012-1443
-	RESERVED
-CVE-2012-1442
-	RESERVED
-CVE-2012-1441
-	RESERVED
-CVE-2012-1440
-	RESERVED
-CVE-2012-1439
-	RESERVED
-CVE-2012-1438
-	RESERVED
-CVE-2012-1437
-	RESERVED
-CVE-2012-1436
-	RESERVED
-CVE-2012-1435
-	RESERVED
-CVE-2012-1434
-	RESERVED
-CVE-2012-1433
-	RESERVED
-CVE-2012-1432
-	RESERVED
-CVE-2012-1431
-	RESERVED
-CVE-2012-1430
-	RESERVED
-CVE-2012-1429
-	RESERVED
-CVE-2012-1428
-	RESERVED
-CVE-2012-1427
-	RESERVED
-CVE-2012-1426
-	RESERVED
-CVE-2012-1425
-	RESERVED
-CVE-2012-1424
-	RESERVED
-CVE-2012-1423
-	RESERVED
-CVE-2012-1422
-	RESERVED
-CVE-2012-1421
-	RESERVED
-CVE-2012-1420
-	RESERVED
-CVE-2012-1419
-	RESERVED
+CVE-2012-1463 (The ELF file parser in AhnLab V3 Internet Security
2011.01.18.00, ...)
+	TODO: check
+CVE-2012-1462 (The ZIP file parser in AhnLab V3 Internet Security
2011.01.18.00, AVG ...)
+	TODO: check
+CVE-2012-1461 (The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender
7.2, ...)
+	TODO: check
+CVE-2012-1460 (The Gzip file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal
(aka ...)
+	TODO: check
+CVE-2012-1459 (The TAR file parser in AhnLab V3 Internet Security
2011.01.18.00, ...)
+	TODO: check
+CVE-2012-1458 (The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos
Anti-Virus ...)
+	TODO: check
+CVE-2012-1457 (The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL
SDK ...)
+	TODO: check
+CVE-2012-1456 (The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal
(aka Cat ...)
+	TODO: check
+CVE-2012-1455 (The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus
...)
+	TODO: check
+CVE-2012-1454 (The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0,
McAfee ...)
+	TODO: check
+CVE-2012-1453 (The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall
...)
+	TODO: check
+CVE-2012-1452 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Ikarus
Virus ...)
+	TODO: check
+CVE-2012-1451 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1 and Ikarus
Virus ...)
+	TODO: check
+CVE-2012-1450 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos
...)
+	TODO: check
+CVE-2012-1449 (The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus
...)
+	TODO: check
+CVE-2012-1448 (The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Trend ...)
+	TODO: check
+CVE-2012-1447 (The ELF file parser in Fortinet Antivirus 4.2.254.0, eSafe
7.0.17.0, ...)
+	TODO: check
+CVE-2012-1446 (The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00,
McAfee ...)
+	TODO: check
+CVE-2012-1445 (The ELF file parser in eSafe 7.0.17.0, Rising Antivirus
22.83.00.03, ...)
+	TODO: check
+CVE-2012-1444 (The ELF file parser in eSafe 7.0.17.0, Prevx 3.0, Fortinet
Antivirus ...)
+	TODO: check
+CVE-2012-1443 (The RAR file parser in ClamAV 0.96.4, Rising Antivirus
22.83.00.03, ...)
+	TODO: check
+CVE-2012-1442 (The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00,
McAfee ...)
+	TODO: check
+CVE-2012-1441 (The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0
allows ...)
+	TODO: check
+CVE-2012-1440 (The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0,
CA ...)
+	TODO: check
+CVE-2012-1439 (The ELF file parser in eSafe 7.0.17.0, Rising Antivirus
22.83.00.03, ...)
+	TODO: check
+CVE-2012-1438 (The Microsoft Office file parser in Comodo Antivirus 7425 and
Sophos ...)
+	TODO: check
+CVE-2012-1437 (The Microsoft Office file parser in Comodo Antivirus 7425 allows
...)
+	TODO: check
+CVE-2012-1436 (The Microsoft EXE file parser in AhnLab V3 Internet Security
...)
+	TODO: check
+CVE-2012-1435 (The Microsoft EXE file parser in AhnLab V3 Internet Security
...)
+	TODO: check
+CVE-2012-1434 (The Microsoft EXE file parser in AhnLab V3 Internet Security
...)
+	TODO: check
+CVE-2012-1433 (The Microsoft EXE file parser in AhnLab V3 Internet Security
...)
+	TODO: check
+CVE-2012-1432 (The Microsoft EXE file parser in Emsisoft Anti-Malware 5.1.0.1,
eSafe ...)
+	TODO: check
+CVE-2012-1431 (The ELF file parser in Bitdefender 7.2, Command Antivirus
5.2.11.5, ...)
+	TODO: check
+CVE-2012-1430 (The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424,
eSafe ...)
+	TODO: check
+CVE-2012-1429 (The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424,
...)
+	TODO: check
+CVE-2012-1428 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Norman ...)
+	TODO: check
+CVE-2012-1427 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Norman ...)
+	TODO: check
+CVE-2012-1426 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Command ...)
+	TODO: check
+CVE-2012-1425 (The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL
SDK ...)
+	TODO: check
+CVE-2012-1424 (The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal
(aka Cat ...)
+	TODO: check
+CVE-2012-1423 (The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft ...)
+	TODO: check
+CVE-2012-1422 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
NOD32 ...)
+	TODO: check
+CVE-2012-1421 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Norman ...)
+	TODO: check
+CVE-2012-1420 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00,
Command ...)
+	TODO: check
+CVE-2012-1419 (The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat
...)
+	TODO: check
 CVE-2012-1418 (Multiple unspecified vulnerabilities in Google Chrome before
...)
 	TODO: check
 CVE-2012-1417
@@ -2491,14 +2502,14 @@
 	RESERVED
 CVE-2012-0713
 	RESERVED
-CVE-2012-0712
-	RESERVED
-CVE-2012-0711
-	RESERVED
-CVE-2012-0710
-	RESERVED
-CVE-2012-0709
-	RESERVED
+CVE-2012-0712 (The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and
9.8 ...)
+	TODO: check
+CVE-2012-0711 (Integer signedness error in the db2dasrrm process in the DB2
...)
+	TODO: check
+CVE-2012-0710 (IBM DB2 9.1 before FP11, 9.5 before FP9, 9.7 before FP5, and 9.8
...)
+	TODO: check
+CVE-2012-0709 (IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4
does not ...)
+	TODO: check
 CVE-2012-0708
 	RESERVED
 CVE-2012-0707 (Cross-site scripting (XSS) vulnerability in IBM WebSphere
Lombardi ...)
@@ -3085,7 +3096,7 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0461 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3104,7 +3115,7 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0458 (Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR
10.x ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3116,12 +3127,12 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0456 (The SVG Filters implementation in Mozilla Firefox before 3.6.28
and ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
 CVE-2012-0455 (Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR
10.x ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3282,20 +3293,15 @@
 	RESERVED
 CVE-2012-0404 (Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom
...)
 	NOT-FOR-US: EMC Documentum eRoom
-CVE-2012-0403
-	RESERVED
+CVE-2012-0403 (Directory traversal vulnerability in EMC RSA enVision 4.x before
4.1 ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0402
-	RESERVED
+CVE-2012-0402 (EMC RSA enVision 4.x before 4.1 Patch 4 uses unspecified
hardcoded ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0401
-	RESERVED
+CVE-2012-0401 (Multiple SQL injection vulnerabilities in EMC RSA enVision 4.x
before ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0400
-	RESERVED
+CVE-2012-0400 (EMC RSA enVision 4.x before 4.1 Patch 4 does not properly
restrict the ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0399
-	RESERVED
+CVE-2012-0399 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA
...)
 	NOT-FOR-US: EMC RSA enVision
 CVE-2012-0398 (EMC Documentum eRoom before 7.4.4 does not properly validate
session ...)
 	NOT-FOR-US: EMC Documentum eRoom
Secure testing commits - Mar 2012 - r18728 - data/CVE

[Secure-testing-commits] r18728 - data/CVE
