diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-02-13 20:10:21 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-13 20:10:21 +0000 |
| commit | 25e8ea8fcfde03c91d69a2226e265459a8c055ac (patch) | |
| tree | 1efd8551ac4b646e87998f49d9df13204df5f2ec /data/CVE/2012.list | |
| parent | 32619a748e34985eaf05809706bf306f3a38b663 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2012.list')
| -rw-r--r-- | data/CVE/2012.list | 17 |
1 files changed, 8 insertions, 9 deletions
diff --git a/data/CVE/2012.list b/data/CVE/2012.list index c182a4dbd1..bb1968f515 100644 --- a/data/CVE/2012.list +++ b/data/CVE/2012.list @@ -333,7 +333,7 @@ CVE-2012-6613 (D-Link DSR-250N devices with firmware 1.05B73_WW allow Persistent CVE-2012-6612 (The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in A ...) {DSA-2963-1} - lucene-solr 3.6.2+dfsg-2 (bug #731113) -CVE-2012-6611 (Polycom HDX Video End Points before 3.0 allows attackers to read arbit ...) +CVE-2012-6611 (An issue was discovered in Polycom Web Management Interface G3/HDX 800 ...) TODO: check CVE-2012-6610 (Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J al ...) NOT-FOR-US: Polycom HDX Video End Points @@ -1574,8 +1574,8 @@ CVE-2012-6093 (The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x befo NOTE: Fixed in 4:4.8.2+dfsg-10 CVE-2012-6092 (Multiple cross-site scripting (XSS) vulnerabilities in the web demos i ...) - activemq <not-affected> (Example code not shipped in .deb) -CVE-2012-6091 - RESERVED +CVE-2012-6091 (Zend_XmlRpc Class in Magento before 1.7.0.2 contains an information di ...) + TODO: check CVE-2012-6090 (Multiple stack-based buffer overflows in the expand function in os/pl- ...) - swi-prolog 5.10.4-5 (low; bug #697416) [squeeze] - swi-prolog 5.10.1-1+squeeze1 @@ -2776,8 +2776,7 @@ CVE-2012-5624 (The XMLHttpRequest object in Qt before 4.8.4 enables http redirec - qt4-x11 4:4.8.2+dfsg-7 (bug #695156) [squeeze] - qt4-x11 <not-affected> (Vulnerable code not present) NOTE: http://lists.qt-project.org/pipermail/announce/2012-November/000014.html -CVE-2012-5623 - RESERVED +CVE-2012-5623 (Squirrelmail 4.0 uses the outdated MD5 hash algorithm for passwords. ...) NOT-FOR-US: change_passwd plugin for Squirrelmail CVE-2012-5622 (Cross-site request forgery (CSRF) vulnerability in the management cons ...) NOT-FOR-US: OpenShift @@ -11998,8 +11997,8 @@ CVE-2012-1905 RESERVED CVE-2012-1904 (mp4fformat.dll in the QuickTime File Format plugin in RealNetworks Rea ...) NOT-FOR-US: RealPlayer -CVE-2012-1903 - RESERVED +CVE-2012-1903 (XSS in Telligent Community 5.6.583.20496 via a flash file and related ...) + TODO: check CVE-2012-1902 (show_config_errors.php in phpMyAdmin 3.4.x before 3.4.10.2, when a con ...) - phpmyadmin 4:3.4.10.2-1 (unimportant) CVE-2012-1901 (Multiple cross-site request forgery (CSRF) vulnerabilities in FlexCMS ...) @@ -12887,8 +12886,8 @@ CVE-2012-1502 (Double free vulnerability in the PyPAM_conv in PAMmodule.c in PyP - python-pam 0.4.2-13 CVE-2012-1501 REJECTED -CVE-2012-1500 - RESERVED +CVE-2012-1500 (Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and Gre ...) + TODO: check CVE-2012-1499 (The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote attac ...) - openjpeg <not-affected> (vulnerable code introduced after 1.3) CVE-2012-1498 (Multiple cross-site request forgery (CSRF) vulnerabilities in Webfolio ...) |