automatic update

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@17766 e39458fd-73e7-0310-bf30-c45bca0a0e42

4 files changed, 172 insertions, 18 deletions

diff --git a/data/CVE/2002.list b/data/CVE/2002.list
index 3ba8e82013..ffdfcd6037 100644
--- a/data/CVE/2002.list
+++ b/data/CVE/2002.list
@@ -1,3 +1,9 @@
+CVE-2002-2437 (The JavaScript implementation in Mozilla Firefox before 4.0, ...)
+	TODO: check
+CVE-2002-2436 (The Cascading Style Sheets (CSS) implementation in Mozilla Firefox ...)
+	TODO: check
+CVE-2002-2435 (The Cascading Style Sheets (CSS) implementation in Microsoft Internet ...)
+	TODO: check
 CVE-2002-2434 (NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not ...)
 	NOT-FOR-US: Novell NetWare
 CVE-2002-2433 (NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows ...)
diff --git a/data/CVE/2010.list b/data/CVE/2010.list
index 7fef632050..abc7e3b4b1 100644
--- a/data/CVE/2010.list
+++ b/data/CVE/2010.list
@@ -1,3 +1,17 @@
+CVE-2010-5074 (The layout engine in Mozilla Firefox before 4.0, Thunderbird before ...)
+	TODO: check
+CVE-2010-5073 (The JavaScript implementation in Google Chrome 4 does not properly ...)
+	TODO: check
+CVE-2010-5072 (The JavaScript implementation in Opera 10.5 does not properly restrict ...)
+	TODO: check
+CVE-2010-5071 (The JavaScript implementation in Microsoft Internet Explorer 8.0 and ...)
+	TODO: check
+CVE-2010-5070 (The JavaScript implementation in Apple Safari 4 does not properly ...)
+	TODO: check
+CVE-2010-5069 (The Cascading Style Sheets (CSS) implementation in Google Chrome 4 ...)
+	TODO: check
+CVE-2010-5068 (The Cascading Style Sheets (CSS) implementation in Opera 10.5 does not ...)
+	TODO: check
 CVE-2010-5067
 	RESERVED
 CVE-2010-5066
diff --git a/data/CVE/2011.list b/data/CVE/2011.list
index d7f014c29e..eca4f29ff0 100644
--- a/data/CVE/2011.list
+++ b/data/CVE/2011.list
@@ -1,3 +1,37 @@
+CVE-2011-4695 (Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is ...)
+	TODO: check
+CVE-2011-4694 (Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows ...)
+	TODO: check
+CVE-2011-4693 (Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows ...)
+	TODO: check
+CVE-2011-4692 (WebKit, as used in Apple Safari 5.1.1 and earlier and Google Chrome 15 ...)
+	TODO: check
+CVE-2011-4691 (Google Chrome 15.0.874.121 and earlier does not prevent capture of ...)
+	TODO: check
+CVE-2011-4690 (Opera 11.60 and earlier does not prevent capture of data about the ...)
+	TODO: check
+CVE-2011-4689 (Microsoft Internet Explorer 6 through 9 does not prevent capture of ...)
+	TODO: check
+CVE-2011-4688 (Mozilla Firefox 8.0.1 and earlier does not prevent capture of data ...)
+	TODO: check
+CVE-2011-4687 (Opera before 11.60 allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2011-4686 (Unspecified vulnerability in the Web Workers implementation in Opera ...)
+	TODO: check
+CVE-2011-4685 (Dragonfly in Opera before 11.60 allows remote attackers to cause a ...)
+	TODO: check
+CVE-2011-4684 (Opera before 11.60 does not properly handle certificate revocation, ...)
+	TODO: check
+CVE-2011-4683 (Unspecified vulnerability in Opera before 11.60 has unknown impact and ...)
+	TODO: check
+CVE-2011-4682 (The JavaScript engine in Opera before 11.60 does not properly ...)
+	TODO: check
+CVE-2011-4681 (Opera before 11.60 does not properly consider the number of . (dot) ...)
+	TODO: check
+CVE-2011-4680 (Multiple cross-site scripting (XSS) vulnerabilities in the customer ...)
+	TODO: check
+CVE-2011-4679 (vtiger CRM before 5.3.0 does not properly recognize the disabled ...)
+	TODO: check
 CVE-2011-4678 (The password reset feature in One Click Orgs before 1.2.3 generates ...)
 	NOT-FOR-US: One Click Orgs
 CVE-2011-4677 (One Click Orgs before 1.2.3 does not have an off autocomplete ...)
@@ -287,8 +321,8 @@ CVE-2011-4541 (Cross-site scripting (XSS) vulnerability in index.php in Hastymai
 	- hastymail <removed>
 CVE-2011-4540 (Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open ...)
 	TODO: check
-CVE-2011-4539
-	RESERVED
+CVE-2011-4539 (dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 ...)
+	TODO: check
 CVE-2011-4538
 	RESERVED
 CVE-2011-4537
@@ -961,12 +995,12 @@ CVE-2011-4267
 	RESERVED
 CVE-2011-4266
 	RESERVED
-CVE-2011-4265
-	RESERVED
-CVE-2011-4264
-	RESERVED
-CVE-2011-4263
-	RESERVED
+CVE-2011-4265 (Cross-site scripting (XSS) vulnerability in phpWebSite before 1.0.0 ...)
+	TODO: check
+CVE-2011-4264 (Cross-site scripting (XSS) vulnerability in Etomite before 1.1 allows ...)
+	TODO: check
+CVE-2011-4263 (Cross-site scripting (XSS) vulnerability in Schneider Electric ...)
+	TODO: check
 CVE-2011-4262 (Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 ...)
 	NOT-FOR-US: RealNetworks RealPlayer
 CVE-2011-4261 (RealNetworks RealPlayer before 15.0.0 allows remote attackers to ...)
@@ -1478,8 +1512,8 @@ CVE-2011-4056
 	RESERVED
 CVE-2011-4055
 	RESERVED
-CVE-2011-4054
-	RESERVED
+CVE-2011-4054 (Cross-site scripting (XSS) vulnerability in login.fcc in CA SiteMinder ...)
+	TODO: check
 CVE-2011-4053
 	RESERVED
 CVE-2011-4052 (Stack-based buffer overflow in CEServer.exe in the CEServer component ...)
@@ -2439,8 +2473,8 @@ CVE-2011-3638
 	- linux-2.6 3.0.0-1 
 CVE-2011-3637
 	RESERVED
-CVE-2011-3636
-	RESERVED
+CVE-2011-3636 (Cross-site request forgery (CSRF) vulnerability in the management ...)
+	TODO: check
 CVE-2011-3635 (Cross-site scripting (XSS) vulnerability in the ...)
 	- empathy 3.2.1.1-1
 	[lenny] - empathy <not-affected> (only affects webkit theming, not present in Lenny)
@@ -3645,8 +3679,8 @@ CVE-2011-3181 (Multiple cross-site scripting (XSS) vulnerabilities in the Tracki
 	[lenny] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2011-3180
 	RESERVED
-CVE-2011-3179
-	RESERVED
+CVE-2011-3179 (The server process in Novell Messenger 2.1 and 2.2.x before 2.2.1, and ...)
+	TODO: check
 CVE-2011-3178
 	RESERVED
 CVE-2011-3177
@@ -5191,8 +5225,8 @@ CVE-2011-2655 (Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handh
 	NOT-FOR-US: Novell ZENworks
 CVE-2011-2654 (The RPC implementation in the server in Novell Cloud Manager 1.1.2 ...)
 	NOT-FOR-US: Novell Cloud Manager
-CVE-2011-2653
-	RESERVED
+CVE-2011-2653 (Directory traversal vulnerability in the rtrlet component in Novell ...)
+	TODO: check
 CVE-2011-2652 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as ...)
 	NOT-FOR-US: Kiwi, SUSE Studio
 CVE-2011-2651 (Unspecified vulnerability in the file browser in Kiwi before 3.74.2, ...)
@@ -5675,8 +5709,8 @@ CVE-2011-2464 (Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P
 	- bind9 1:9.8.1.dfsg-1 (high)
 CVE-2011-2463
 	RESERVED
-CVE-2011-2462
-	RESERVED
+CVE-2011-2462 (Unspecified vulnerability in the U3D component in Adobe Reader and ...)
+	TODO: check
 CVE-2011-2461 (Cross-site scripting (XSS) vulnerability in the Adobe Flex SDK 3.x and ...)
 	TODO: check
 CVE-2011-2460 (Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on ...)
diff --git a/data/CVE/2012.list b/data/CVE/2012.list
index 96df366402..ec6be8bbea 100644
--- a/data/CVE/2012.list
+++ b/data/CVE/2012.list
@@ -1,3 +1,103 @@
+CVE-2012-0070
+	RESERVED
+CVE-2012-0069
+	RESERVED
+CVE-2012-0068
+	RESERVED
+CVE-2012-0067
+	RESERVED
+CVE-2012-0066
+	RESERVED
+CVE-2012-0065
+	RESERVED
+CVE-2012-0064
+	RESERVED
+CVE-2012-0063
+	RESERVED
+CVE-2012-0062
+	RESERVED
+CVE-2012-0061
+	RESERVED
+CVE-2012-0060
+	RESERVED
+CVE-2012-0059
+	RESERVED
+CVE-2012-0058
+	RESERVED
+CVE-2012-0057
+	RESERVED
+CVE-2012-0056
+	RESERVED
+CVE-2012-0055
+	RESERVED
+CVE-2012-0054
+	RESERVED
+CVE-2012-0053
+	RESERVED
+CVE-2012-0052
+	RESERVED
+CVE-2012-0051
+	RESERVED
+CVE-2012-0050
+	RESERVED
+CVE-2012-0049
+	RESERVED
+CVE-2012-0048
+	RESERVED
+CVE-2012-0047
+	RESERVED
+CVE-2012-0046
+	RESERVED
+CVE-2012-0045
+	RESERVED
+CVE-2012-0044
+	RESERVED
+CVE-2012-0043
+	RESERVED
+CVE-2012-0042
+	RESERVED
+CVE-2012-0041
+	RESERVED
+CVE-2012-0040
+	RESERVED
+CVE-2012-0039
+	RESERVED
+CVE-2012-0038
+	RESERVED
+CVE-2012-0037
+	RESERVED
+CVE-2012-0036
+	RESERVED
+CVE-2012-0035
+	RESERVED
+CVE-2012-0034
+	RESERVED
+CVE-2012-0033
+	RESERVED
+CVE-2012-0032
+	RESERVED
+CVE-2012-0031
+	RESERVED
+CVE-2012-0030
+	RESERVED
+CVE-2012-0029
+	RESERVED
+CVE-2012-0028
+	RESERVED
+CVE-2012-0027
+	RESERVED
+CVE-2012-0026
+	RESERVED
+CVE-2012-0025
+	RESERVED
+CVE-2012-0024
+	RESERVED
+CVE-2012-0023
+	RESERVED
+CVE-2012-0022
+	RESERVED
+CVE-2012-0021
+	RESERVED
 CVE-2012-0020
 	RESERVED
 CVE-2012-0019