[Secure-testing-commits] r9698 - data/CVE
kees at alioth.debian.org
kees at alioth.debian.org
Fri Aug 29 19:46:24 UTC 2008
Author: kees
Date: 2008-08-29 19:46:23 +0000 (Fri, 29 Aug 2008)
New Revision: 9698
Modified:
data/CVE/list
Log:
tomcat6 is in the archive now; nfu jboss
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-08-29 09:54:48 UTC (rev 9697)
+++ data/CVE/list 2008-08-29 19:46:23 UTC (rev 9698)
@@ -1340,7 +1340,7 @@
CVE-2008-3274
RESERVED
CVE-2008-3273 (JBoss Enterprise Application Platform (aka JBossEAP or EAP) before ...)
- TODO: check
+ NOT-FOR-US: JBoss
CVE-2008-3272 (The snd_seq_oss_synth_make_info function in ...)
{DSA-1630-1}
- linux-2.6.24 <unfixed>
@@ -2088,6 +2088,7 @@
- apache <not-affected> (vulnerable code not present)
CVE-2008-2938 (Directory traversal vulnerability in Apache Tomcat 4.1.0 through ...)
- tomcat5.5 <unfixed> (low; bug #496309)
+ - tomcat6 <unfixed> (low)
CVE-2008-2937 (Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a ...)
- postfix 2.5.4-1 (low)
[etch] - postfix <no-dsa> (minor issue)
@@ -3421,6 +3422,7 @@
- pcre3 7.6-2.1 (medium; bug #488919)
CVE-2008-2370 (Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 ...)
- tomcat5.5 <unfixed> (bug #494504)
+ - tomcat6 <unfixed> (low)
CVE-2008-2369 (manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a ...)
NOT-FOR-US: Red Hat Network Satellite Server
CVE-2008-2368
@@ -6099,6 +6101,7 @@
- icedove 2.0.0.14-1
CVE-2008-1232 (Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.0 ...)
- tomcat5.5 <unfixed> (low; bug #494504)
+ - tomcat6 <unfixed> (low)
CVE-2008-1231 (Directory traversal vulnerability in Edit.jsp in JSPWiki 2.4.104 and ...)
- jspwiki <unfixed> (bug #470477)
CVE-2008-1230 (Unrestricted file upload vulnerability in JSPWiki 2.4.104 and 2.5.139 ...)
More information about the Secure-testing-commits
mailing list