[Secure-testing-commits] r3868 - data/CVE

Mon Apr 24 13:24:50 UTC 2006

Author: jmm-guest
Date: 2006-04-24 13:24:42 +0000 (Mon, 24 Apr 2006)
New Revision: 3868

Modified:
   data/CVE/list
Log:
struts fixed


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-04-24 09:14:24 UTC (rev 3867)
+++ data/CVE/list	2006-04-24 13:24:42 UTC (rev 3868)
@@ -1077,13 +1077,13 @@
 CVE-2005-4749 (HTTP request smuggling vulnerability in BEA WebLogic Server and ...)
 	NOT-FOR-US: BEA WebLogic
 CVE-2006-1548 (Cross-site scripting (XSS) vulnerability in (1) LookupDispatchAction ...)
-	- libstruts1.2-java <unfixed> (bug #360551)
+	- libstruts1.2-java 1.2.9-1 (bug #360551)
 	[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
 CVE-2006-1547 (ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 ...)
-	- libstruts1.2-java <unfixed> (bug #360551)
+	- libstruts1.2-java 1.2.9-1 (bug #360551)
 	[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
 CVE-2006-1546 (Apache Software Foundation (ASF) Struts before 1.2.9 allows remote ...)
-	- libstruts1.2-java <unfixed> (bug #360551)
+	- libstruts1.2-java 1.2.9-1 (bug #360551)
 	[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
 CVE-2006-1545 (Direct static code injection vulnerability in admin/config.php in ...)
 	NOT-FOR-US: VNews 


