| Bug | Description | Note |
|---|---|---|
| CVE-2006-7246 | check | |
| CVE-2009-5052 | Multiple unspecified vulnerabilities in Smarty before 3.0.0 beta 6 ... | check |
| CVE-2009-5053 | Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote ... | check |
| CVE-2009-5054 | Smarty before 3.0.0 beta 4 does not consider the umask value when ... | check |
| CVE-2010-0301 | main.C in maildrop 2.3.0 and earlier, when run by root with the -d ... | check courier (embeds maildrop) |
| CVE-2010-0431 | QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat ... | recheck newer uploads |
| CVE-2010-0991 | Multiple heap-based buffer overflows in imlib2 1.4.3 allow ... | recheck when 1.4.3 gets uploaded to unstable |
| CVE-2010-1403 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and ... | ^ this seems to be the commit for cve-2010-1404. what is the right one? |
| CVE-2010-1417 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple ... | request rejection |
| CVE-2010-1757 | WebKit in Apple iOS before 4 on the iPhone and iPod touch does not ... | need commit # |
| CVE-2010-1765 | is this commit correct? its labeled as a "build fix" | |
| CVE-2010-1781 | Double free vulnerability in WebKit in Apple iOS before 4.1 on the ... | need commit # |
| CVE-2010-1812 | Use-after-free vulnerability in WebKit in Apple iOS before 4.1 on the ... | need commit # |
| CVE-2010-1814 | WebKit in Apple iOS before 4.1 on the iPhone and iPod touch, and ... | need commit # |
| CVE-2010-1823 | Use-after-free vulnerability in WebKit before r65958, as used in ... | recheck chromium, was wrong commit |
| CVE-2010-2103 | Cross-site scripting (XSS) vulnerability in ... | find out if the axis2 c implementation (axis2c) is affected by this |
| CVE-2010-2264 | The Cascading Style Sheets (CSS) implementation in WebKit in Apple ... | need commit # |
| CVE-2010-3803 | Integer overflow in WebKit in Apple Safari before 5.0.3 on Mac OS X ... | need commit # |
| CVE-2010-3804 | The JavaScript implementation in WebKit in Apple Safari before 5.0.3 ... | need commit # |
| CVE-2010-3805 | Integer underflow in WebKit in Apple Safari before 5.0.3 on Mac OS X ... | need commit # |
| CVE-2010-3808 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3809 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3810 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3811 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ... | need commit # |
| CVE-2010-3816 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ... | need commit # |
| CVE-2010-3817 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3818 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ... | need commit # |
| CVE-2010-3819 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3820 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3821 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3822 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3823 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ... | need commit # |
| CVE-2010-3824 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ... | need commit # |
| CVE-2010-3826 | WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ... | need commit # |
| CVE-2010-3829 | WebKit in Apple iOS before 4.2 allows remote attackers to bypass the ... | need commit # |
| CVE-2010-4201 | Use-after-free vulnerability in Google Chrome before 7.0.517.44 allows ... | need webkit commit # (above bug report is embargoed) |
| CVE-2010-4483 | Google Chrome before 8.0.552.215 does not properly restrict read ... | need webkit commit # (above bug is embargoed) |
| CVE-2010-4486 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 ... | recheck when > 1.3 gets uploaded |
| CVE-2010-4664 | check | |
| CVE-2010-4665 | Integer overflow in the ReadDirectory function in tiffdump.c in ... | check |
| CVE-2010-4722 | Unspecified vulnerability in the fetch plugin in Smarty before 3.0.2 ... | check |
| CVE-2010-4723 | Smarty before 3.0.0, when security is enabled, does not prevent access ... | check |
| CVE-2010-4724 | Multiple unspecified vulnerabilities in the parser implementation in ... | check |
| CVE-2010-4725 | Smarty before 3.0.0 RC3 does not properly handle an on value of the ... | check |
| CVE-2010-4726 | Unspecified vulnerability in the math plugin in Smarty before 3.0.0 ... | check |
| CVE-2010-4727 | Smarty before 3.0.0 beta 7 does not properly handle the <?php and ?> ... | check |
| CVE-2010-4778 | Multiple cross-site scripting (XSS) vulnerabilities in ... | check |
| CVE-2011-0195 | The generate-id XPath function in libxslt in Apple iOS 4.3.x before ... | Check with Apple, whether this is the standard libxslt |
| CVE-2011-0411 | The STARTTLS implementation in Postfix 2.4.x before 2.4.16, 2.5.x ... | lots of various other packages potentially affected, need to check them, see http://www.kb.cert.org/vuls/id/555316 |
| CVE-2011-0483 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ... | recheck when > 1.3 gets uploaded |
| CVE-2011-0484 | Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ... | recheck when > 1.3 gets uploaded |
| CVE-2011-0539 | The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, ... | remove wheezy not-affected note once newer version transitions |
| CVE-2011-0983 | Google Chrome before 9.0.597.94 does not properly handle anonymous ... | check webkit > 1.3 when it gets uploaded |
| CVE-2011-0984 | Google Chrome before 9.0.597.94 does not properly handle plug-ins, ... | ^ this has to be the wrong commit, its a v8 fix, but that doesn't match the description at all |
| CVE-2011-0995 | The sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 ... | check |
| CVE-2011-1059 | Use-after-free vulnerability in WebCore in WebKit before r77705, as ... | recheck webkit 1.3 once it enters unstable |
| CVE-2011-1107 | Unspecified vulnerability in Google Chrome before 9.0.597.107 allows ... | recheck webkit 1.3 once it gets uploaded to unstable |
| CVE-2011-1110 | Google Chrome before 9.0.597.107 does not properly implement key frame ... | check webkit 1.3 once it gets uploaded to unstable |
| CVE-2011-1114 | Google Chrome before 9.0.597.107 does not properly handle tables, ... | check webkit 1.3 once it enters unstable |
| CVE-2011-1119 | Google Chrome before 9.0.597.107 does not properly determine device ... | recheck webkit 1.3 once its uploaded to unstable |
| CVE-2011-1120 | The WebGL implementation in Google Chrome before 9.0.597.107 allows ... | recheck webkit 1.3 once its uploaded to unstable |
| CVE-2011-1122 | The WebGL implementation in Google Chrome before 9.0.597.107 allows ... | ^ this bug is embargoed, please note the commit # |
| CVE-2011-1125 | Google Chrome before 9.0.597.107 does not properly perform layout, ... | recheck once webkit 1.3 enters unstable |
| CVE-2011-1188 | Google Chrome before 10.0.648.127 does not properly handle counter ... | ^ this commit only contains tests for the issue, need commit # for fix |
| CVE-2011-1191 | Use-after-free vulnerability in Google Chrome before 10.0.648.127 ... | recheck webkit 1.3 |
| CVE-2011-1195 | Use-after-free vulnerability in Google Chrome before 10.0.648.127 ... | recheck webkit 1.3 |
| CVE-2011-1200 | Google Chrome before 10.0.648.127 does not properly perform a cast of ... | recheck webkit 1.3 |
| CVE-2011-1201 | The context implementation in WebKit, as used in Google Chrome before ... | recheck webkit 1.3 |
| CVE-2011-1390 | SQL injection vulnerability in the Maintenance tool in IBM Rational ... | check |
| CVE-2011-2513 | check | |
| CVE-2011-2687 | Drupal 7.x before 7.3 allows remote attackers to bypass intended ... | Check status of "Reflected cross site scripting vulnerability in error handler" in Squeeze |
| CVE-2011-2833 | WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows ... | check iOS |
| CVE-2011-2844 | Google Chrome before 14.0.835.163 does not properly process MP3 files, ... | check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382 |
| CVE-2011-2896 | The LZW decompressor in the LWZReadByte function in giftoppm.c in the ... | There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896 |
| CVE-2011-2929 | The template selection functionality in ... | recheck when rails > 3.0 gets uploaded |
| CVE-2011-3208 | Stack-based buffer overflow in the split_wildmats function in nntpd.c ... | file bug for kolab-cyrus-imapd |
| CVE-2011-3365 | The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 through 4.7.1, and ... | File bugs |
| CVE-2011-3372 | imap/nntpd.c in the NNTP server (nntpd) for Cyrus IMAPd 2.4.x before ... | file bug for kolab-cyrus-imapd |
| CVE-2011-4031 | Integer underflow in the asfrtp_parse_packet function in ... | check |
| CVE-2011-5034 | Apache Geronimo 2.2.1 and earlier computes hash values for form ... | check |
| CVE-2012-0178 | Race condition in partmgr.sys in Windows Partition Manager in ... | check |
| CVE-2012-0202 | Multiple stack-based buffer overflows in tm1admsd.exe in the Admin ... | check |
| CVE-2012-0376 | The voice-sipstack component in Cisco Unified Communications Manager ... | check |
| CVE-2012-0378 | Cisco Adaptive Security Appliances (ASA) 5500 series devices with ... | check |
| CVE-2012-0453 | Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in ... | check |
| CVE-2012-0562 | Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ... | check |
| CVE-2012-0564 | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ... | check |
| CVE-2012-0565 | Unspecified vulnerability in the Oracle Agile component in Oracle ... | check |
| CVE-2012-0566 | Unspecified vulnerability in the Oracle Agile component in Oracle ... | check |
| CVE-2012-0567 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0571 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0573 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0575 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0576 | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ... | check |
| CVE-2012-0577 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0579 | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ... | check |
| CVE-2012-0580 | Unspecified vulnerability in the Oracle Agile PLM for Process ... | check |
| CVE-2012-0581 | Unspecified vulnerability in the Oracle Agile component in Oracle ... | check |
| CVE-2012-0582 | Unspecified vulnerability in the Siebel Clinical component in Oracle ... | check |
| CVE-2012-0649 | Race condition in the initialization routine in blued in Bluetooth in ... | check |
| CVE-2012-0651 | The directory server in Directory Service in Apple Mac OS X 10.6.8 ... | check |
| CVE-2012-0652 | Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or ... | check |
| CVE-2012-0654 | libsecurity in Apple Mac OS X before 10.7.4 accesses uninitialized ... | check |
| CVE-2012-0655 | libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict ... | check |
| CVE-2012-0656 | Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before ... | check |
| CVE-2012-0657 | Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS ... | check |
| CVE-2012-0658 | Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ... | check |
| CVE-2012-0659 | Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ... | check |
| CVE-2012-0660 | Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows ... | check |
| CVE-2012-0661 | Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x ... | check |
| CVE-2012-0662 | Integer overflow in the Security Framework in Apple Mac OS X before ... | check |
| CVE-2012-0672 | WebKit in Apple iOS before 5.1.1 allows remote attackers to execute ... | check |
| CVE-2012-0674 | Safari in Apple iOS before 5.1.1 allows remote attackers to spoof the ... | check |
| CVE-2012-0676 | WebKit in Apple Safari before 5.1.7 does not properly track state ... | check |
| CVE-2012-0845 | check | |
| CVE-2012-1096 | check | |
| CVE-2012-1804 | The OPC server in Progea Movicon before 11.3 allows remote attackers ... | check |
| CVE-2012-1845 | Use-after-free vulnerability in Google Chrome 17.0.963.66 and earlier ... | check |
| CVE-2012-1846 | Google Chrome 17.0.963.66 and earlier allows remote attackers to ... | check |
| CVE-2012-2214 | XMPP remote crash | check |
| CVE-2012-2276 | The IRM Server in EMC Documentum Information Rights Management 4.x ... | check |
| CVE-2012-2277 | The IRM Server in EMC Documentum Information Rights Management 4.x ... | check |
| CVE-2012-2318 | Improper validation of incoming plaintext messages in MSN protocol plug-in | check |
| CVE-2012-2511 | The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and ... | check |
| CVE-2012-2512 | The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and ... | check |
| CVE-2012-2513 | The Diaginput function in disp+work.exe 7010.29.15.58313 and ... | check |
| CVE-2012-2514 | The DiagiEventSource function in disp+work.exe 7010.29.15.58313 and ... | check |
| CVE-2012-2611 | The DiagTraceR3Info function in the Dialog processor in disp+work.exe ... | check |
| CVE-2012-2612 | The DiagTraceHex function in disp+work.exe 7010.29.15.58313 and ... | check |
| TEMP-0000000-F56399 | webkit info leak | request cve id? |
Home - Testing Security Team - Debian Security - Source (SVN)