diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-02-19 20:10:27 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-19 20:10:27 +0000 |
| commit | b7c54778e621c031016d81415dd872e54572fa1a (patch) | |
| tree | 33a734bc4724e4061bbeb238856a72c08562f9f7 /data/CVE/2012.list | |
| parent | 234e7ced37e7d2e6ede42bec9d69b467888794a8 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2012.list')
| -rw-r--r-- | data/CVE/2012.list | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/data/CVE/2012.list b/data/CVE/2012.list index 75bb7dd7a0..e063a4cffd 100644 --- a/data/CVE/2012.list +++ b/data/CVE/2012.list @@ -150,8 +150,7 @@ CVE-2012-XXXX [Insufficient validation of USB device descriptors] [squeeze] - oss4 <no-dsa> (Minor issue) CVE-2012-6686 REJECTED -CVE-2012-6685 [ruby-nokogiri XXE] - RESERVED +CVE-2012-6685 (Nokogiri before 1.5.4 is vulnerable to XXE attacks ...) {DLA-229-1} - ruby-nokogiri 1.5.4-1 (low) - libnokogiri-ruby <removed> @@ -326,8 +325,8 @@ CVE-2012-6616 (The mov_text_decode_frame function in libavcodec/movtextdec.c in CVE-2012-6615 (The ff_ass_split_override_codes function in libavcodec/ass_split.c in ...) - libav <not-affected> (Vulnerable code not present in libav) - ffmpeg <not-affected> (Vulnerable code not present in older ffmpeg) -CVE-2012-6614 - RESERVED +CVE-2012-6614 (D-Link DSR-250N devices before 1.08B31 allow remote authenticated user ...) + TODO: check CVE-2012-6613 (D-Link DSR-250N devices with firmware 1.05B73_WW allow Persistent Root ...) NOT-FOR-US: D-Link CVE-2012-6612 (The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in A ...) @@ -11938,8 +11937,8 @@ CVE-2012-1934 (SQL injection vulnerability in admin/country/edit.php in Newscoop - newscoop <itp> (bug #604113) CVE-2012-1933 (Multiple PHP remote file inclusion vulnerabilities in Newscoop 3.5.x b ...) - newscoop <itp> (bug #604113) -CVE-2012-1932 - RESERVED +CVE-2012-1932 (A cross-site scripting (XSS) vulnerability in Wolf CMS 0.75 and earlie ...) + TODO: check CVE-2012-1931 (Opera before 11.62 on UNIX, when used in conjunction with an unspecifi ...) NOT-FOR-US: Opera CVE-2012-1930 (Opera before 11.62 on UNIX uses world-readable permissions for tempora ...) @@ -16390,8 +16389,7 @@ CVE-2012-0056 (The mem_write function in the Linux kernel before 3.2.2, when ASL [squeeze] - linux-2.6 <not-affected> (introduced in 2.6.39) [lenny] - linux-2.6 <not-affected> (introduced in 2.6.39) NOTE: fix is http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=e268337dfe26dfc7efd422a804dbb27977a3cccc (queued for 3.3) -CVE-2012-0055 - RESERVED +CVE-2012-0055 (OverlayFS in the Linux kernel before 3.0.0-16.28, as used in Ubuntu 10 ...) NOT-FOR-US: overlayfs is not (yet) in the Debian kernel CVE-2012-0054 (libs/updater.py in GoLismero 0.6.3, and other versions before Git revi ...) NOT-FOR-US: golismero not in Debian |