[Secure-testing-commits] r3868 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Mon Apr 24 13:24:50 UTC 2006
Author: jmm-guest
Date: 2006-04-24 13:24:42 +0000 (Mon, 24 Apr 2006)
New Revision: 3868
Modified:
data/CVE/list
Log:
struts fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-04-24 09:14:24 UTC (rev 3867)
+++ data/CVE/list 2006-04-24 13:24:42 UTC (rev 3868)
@@ -1077,13 +1077,13 @@
CVE-2005-4749 (HTTP request smuggling vulnerability in BEA WebLogic Server and ...)
NOT-FOR-US: BEA WebLogic
CVE-2006-1548 (Cross-site scripting (XSS) vulnerability in (1) LookupDispatchAction ...)
- - libstruts1.2-java <unfixed> (bug #360551)
+ - libstruts1.2-java 1.2.9-1 (bug #360551)
[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
CVE-2006-1547 (ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 ...)
- - libstruts1.2-java <unfixed> (bug #360551)
+ - libstruts1.2-java 1.2.9-1 (bug #360551)
[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
CVE-2006-1546 (Apache Software Foundation (ASF) Struts before 1.2.9 allows remote ...)
- - libstruts1.2-java <unfixed> (bug #360551)
+ - libstruts1.2-java 1.2.9-1 (bug #360551)
[sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java)
CVE-2006-1545 (Direct static code injection vulnerability in admin/config.php in ...)
NOT-FOR-US: VNews
More information about the Secure-testing-commits
mailing list