diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-07-09 20:10:20 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-07-09 20:10:20 +0000 |
| commit | 9d91ec32fbb2c785aa69cc7a28f0719058ffad10 (patch) | |
| tree | 18e3f991b500a5dd9fe6da121a7d32c6321ad370 /data/CVE/list.2012 | |
| parent | cd0a65cf8987a3e6813aba4b9f76f5dcc035d3c2 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/list.2012')
| -rw-r--r-- | data/CVE/list.2012 | 23 |
1 files changed, 11 insertions, 12 deletions
diff --git a/data/CVE/list.2012 b/data/CVE/list.2012 index 51b67e796a..41ac24d65d 100644 --- a/data/CVE/list.2012 +++ b/data/CVE/list.2012 @@ -130,7 +130,7 @@ CVE-2012-6697 (InspIRCd before 2.0.7 allows remote attackers to cause a denial o CVE-2012-6690 RESERVED CVE-2012-6688 - RESERVED + REJECTED CVE-2012-6689 (The netlink_sendmsg function in net/netlink/af_netlink.c in the Linux ...) {DLA-246-1} - linux 3.6.4-1 @@ -2753,7 +2753,7 @@ CVE-2012-5634 (Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthro CVE-2012-5633 (The URIMappingInterceptor in Apache CXF before 2.5.8, 2.6.x before 2.6 ...) - jbossas4 <not-affected> (Only builds a few libraries, not the full application server, #581226) CVE-2012-5632 - RESERVED + REJECTED CVE-2012-5631 (ipa 3.0 does not properly check server identity before sending credent ...) NOT-FOR-US: FreeIPA CVE-2012-5630 (libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race co ...) @@ -5366,7 +5366,7 @@ CVE-2012-4510 (cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGe {DSA-2562-1} - cups-pk-helper 0.2.3-1 CVE-2012-4509 - RESERVED + REJECTED CVE-2012-4508 (Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 ...) {DSA-2668-1} - linux 3.2.35-1 @@ -10014,7 +10014,7 @@ CVE-2012-2690 (virt-edit in libguestfs before 1.18.0 does not preserve the permi NOTE: https://www.openwall.com/lists/oss-security/2012/06/11/1 NOTE: https://www.openwall.com/lists/oss-security/2012/06/11/5 CVE-2012-2689 - RESERVED + REJECTED CVE-2012-2688 (Unspecified vulnerability in the _php_stream_scandir function in the s ...) {DSA-2527-1} - php5 5.4.4-4 (low; bug #683274) @@ -10081,8 +10081,8 @@ CVE-2012-2667 (Session fixation vulnerability in lib/user/sfBasicSecurityUser.cl NOTE: http://symfony.com/blog/security-release-symfony-1-4-18-released NOTE: http://trac.symfony-project.org/browser/tags/RELEASE_1_4_18/CHANGELOG NOTE: http://trac.symfony-project.org/changeset/33466?format=diff&new=33466 -CVE-2012-2666 - RESERVED +CVE-2012-2666 (golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/ ...) + TODO: check CVE-2012-2665 (Multiple heap-based buffer overflows in the XML manifest encryption ta ...) {DSA-2520-1} - libreoffice 1:3.5.4-7 @@ -10102,7 +10102,7 @@ CVE-2012-2660 (actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails b - ruby-activerecord-3.2 3.2.6-1 (bug #675429) NOTE: http://seclists.org/oss-sec/2012/q2/449 CVE-2012-2659 - RESERVED + REJECTED CVE-2012-2658 - unixodbc 2.3.6-0.1 (unimportant; bug #675058) NOTE: Only triggerable by trusted input, not a security issue @@ -12639,7 +12639,7 @@ CVE-2012-1610 (Integer overflow in the GetEXIFProperty function in magick/proper {DSA-2462-1} - imagemagick 8:6.7.4.0-4 (bug #667635) CVE-2012-1609 - RESERVED + REJECTED CVE-2012-1608 (The t3lib_div::RemoveXSS API method in TYPO3 4.4.0 through 4.4.13, 4.5 ...) {DSA-2445-1} - typo3-src 4.5.14+dfsg1-1 @@ -12894,8 +12894,7 @@ CVE-2012-1496 (Local file inclusion in WebCalendar before 1.2.5. ...) - webcalendar <removed> CVE-2012-1495 (install/index.php in WebCalendar before 1.2.5 allows remote attackers ...) - webcalendar <removed> -CVE-2012-1102 [XML::Atom Perl module XML entity expansion] - RESERVED +CVE-2012-1102 (It was discovered that the XML::Atom Perl module before version 0.39 d ...) {DSA-2424-1} - libxml-atom-perl 0.39-1 (medium) CVE-2012-1494 @@ -14444,7 +14443,7 @@ CVE-2012-0834 (Cross-site scripting (XSS) vulnerability in lib/QueryRender.php i CVE-2012-0833 (The acllas__handle_group_entry function in servers/plugins/acl/acllas. ...) - 389-ds-base <not-affected> (Fixed before initial upload) CVE-2012-0832 - RESERVED + REJECTED CVE-2012-0831 (PHP before 5.3.10 does not properly perform a temporary change to the ...) {DSA-2408-1} - php5 5.3.10-1 @@ -14490,7 +14489,7 @@ CVE-2012-0817 (Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote att [squeeze] - samba <not-affected> (Only affects 3.6.x) [lenny] - samba <not-affected> (Only affects 3.6.x) CVE-2012-0816 - RESERVED + REJECTED CVE-2012-0815 (The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 al ...) {DLA-140-1} - rpm 4.9.1.3-1 (bug #667031) |