diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-02-08 20:10:21 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-08 20:10:21 +0000 |
| commit | a136ab7dc92ad401be2b3037f7cf16e68b9ed3f1 (patch) | |
| tree | 09c6069321bf87e7bdc80541f80f269fa4c7eb27 /data/CVE/2012.list | |
| parent | 9af374078794e7e56a35a121ef1fcce185e38fcb (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2012.list')
| -rw-r--r-- | data/CVE/2012.list | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/data/CVE/2012.list b/data/CVE/2012.list index 6e969e95dc..92ef83dc8e 100644 --- a/data/CVE/2012.list +++ b/data/CVE/2012.list @@ -2937,8 +2937,8 @@ CVE-2012-5572 (CRLF injection vulnerability in the cookie method (lib/Dancer/Coo NOTE: https://github.com/PerlDancer/Dancer/issues/859 CVE-2012-5571 (OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properl ...) - keystone 2012.1.1-11 (bug #694433) -CVE-2012-5570 - RESERVED +CVE-2012-5570 (The Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal allows remo ...) + TODO: check CVE-2012-5569 (Multiple cross-site scripting (XSS) vulnerabilities in the Basic webma ...) NOT-FOR-US: Drupal Webmail module CVE-2012-5568 (Apache Tomcat through 7.0.x allows remote attackers to cause a denial ...) @@ -5358,8 +5358,7 @@ CVE-2012-4513 (khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows - kdebase <removed> (unimportant) - kde-baseapps <unfixed> (unimportant) NOTE: Konqueror not supported security-wise -CVE-2012-4512 - RESERVED +CVE-2012-4512 (The CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 all ...) - kdebase <removed> (unimportant) - kde-baseapps <unfixed> (unimportant) NOTE: Konqueror not supported security-wise @@ -5759,8 +5758,7 @@ CVE-2012-4382 (MediaWiki before 1.18.5, and 1.19.x before 1.19.2 does not proper [squeeze] - mediawiki <end-of-life> NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39823 NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6 -CVE-2012-4381 [Passwords were stored in local DB even if auth systems like LDAP were used] - RESERVED +CVE-2012-4381 (MediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in t ...) - mediawiki 1:1.19.2-1 (bug #686330) [squeeze] - mediawiki <end-of-life> NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39184 @@ -6653,8 +6651,8 @@ CVE-2012-4031 (Multiple directory traversal vulnerabilities in src/acloglogin.ph NOT-FOR-US: Wangkongbao not in Debian CVE-2012-4030 (Chamilo before 1.8.8.6 does not adequately handle user supplied input ...) NOT-FOR-US: Chamilo LMS -CVE-2012-4029 - RESERVED +CVE-2012-4029 (Cross-site scripting (XSS) vulnerability in main/dropbox/index.php in ...) + TODO: check CVE-2012-4028 (Tridium Niagara AX Framework does not properly store credential data, ...) NOT-FOR-US: Tridium Niagara AX Framework CVE-2012-4027 (Directory traversal vulnerability in Tridium Niagara AX Framework allo ...) |