diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-02-17 20:10:18 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-17 20:10:18 +0000 |
commit | 568d8cc15262cd4b28daadbdbea821aaed057dd2 (patch) | |
tree | fb0a2efc014902593859f3cbf56f3dc0c8cadec2 /data/CVE/2013.list | |
parent | 229d891ac0028f7bc0f018957d8c24fee9a50ded (diff) |
automatic update
Diffstat (limited to 'data/CVE/2013.list')
-rw-r--r-- | data/CVE/2013.list | 15 |
1 files changed, 8 insertions, 7 deletions
diff --git a/data/CVE/2013.list b/data/CVE/2013.list index 458c97a78c..1864abb762 100644 --- a/data/CVE/2013.list +++ b/data/CVE/2013.list @@ -528,8 +528,8 @@ CVE-2013-7327 (The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 [squeeze] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0) CVE-2013-7326 (Cross-site scripting (XSS) vulnerability in vTiger CRM 5.4.0 allows re ...) NOT-FOR-US: vTiger CRM -CVE-2013-7324 - RESERVED +CVE-2013-7324 (Webkit-GTK 2.x (any version with HTML5 audio/video support based on GS ...) + TODO: check CVE-2013-7329 (The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when ...) - libcgi-application-perl 4.50-2 (bug #739505) [wheezy] - libcgi-application-perl <no-dsa> (Minor issue) @@ -7883,7 +7883,8 @@ CVE-2013-4449 (The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not [squeeze] - openldap <no-dsa> (Minor issue) NOTE: http://www.openldap.org/its/index.cgi/Incoming?id=7723 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1019490 -CVE-2013-4448 (echoping through 6.0.2 has buffer overflow vulnerabilities ...) +CVE-2013-4448 + REJECTED TODO: contacted MITRE, should be rejected, cf. https://www.openwall.com/lists/oss-security/2013/10/21/9 CVE-2013-4447 (Cross-site scripting (XSS) vulnerability in the API in the Simplenews ...) NOT-FOR-US: Simplenews Drupal contributed module @@ -9924,8 +9925,8 @@ CVE-2013-3740 RESERVED CVE-2013-3739 (Directory traversal vulnerability in editor.php in Network Weathermap ...) NOT-FOR-US: Network Weathermap -CVE-2013-3738 - RESERVED +CVE-2013-3738 (A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequat ...) + TODO: check CVE-2013-3843 (Stack-based buffer overflow in the mk_request_header_process function ...) - monkey <removed> [squeeze] - monkey <no-dsa> (Minor issue) @@ -9968,8 +9969,8 @@ CVE-2013-3724 (The mk_request_header_process function in mk_request.c in Monkey [squeeze] - monkey <no-dsa> (Minor issue) CVE-2013-3723 RESERVED -CVE-2013-3722 - RESERVED +CVE-2013-3722 (A Denial of Service (infinite loop) exists in OpenSIPS before 1.10 in ...) + TODO: check CVE-2013-3721 (SQL injection vulnerability in awards.php in PsychoStats 3.2.2b allows ...) NOT-FOR-US: PsychoStats CVE-2013-3720 (Cross-site scripting (XSS) vulnerability in widget_remove.php in the F ...) |