[Secure-testing-commits] r7851 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Mon Jan 7 20:17:40 UTC 2008
Author: jmm-guest
Date: 2008-01-07 20:17:39 +0000 (Mon, 07 Jan 2008)
New Revision: 7851
Modified:
data/CVE/list
Log:
more tomcat cleanups
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-01-07 20:10:09 UTC (rev 7850)
+++ data/CVE/list 2008-01-07 20:17:39 UTC (rev 7851)
@@ -11915,16 +11915,15 @@
CVE-2007-2108 (Unspecified vulnerability in the Core RDBMS component Oracle Database ...)
NOT-FOR-US: Oracle
CVE-2006-7196 (Cross-site scripting (XSS) vulnerability in the calendar application ...)
- - tomcat5.5 5.5.16-1 (low)
- - tomcat5 <unfixed> (low)
- - tomcat4 <removed> (low)
- [sarge] - tomcat4 <no-dsa> (Contrib not supported)
- NOTE: Mark Thomas <markt at apache.org> reported on Bugtraq that it's fixed in 5.5.16
+ - tomcat5.5 5.5.16-1 (unimportant)
+ - tomcat5 <unfixed> (unimportant)
+ - tomcat4 <removed> (unimportant)
+ NOTE: Only present in an example, not in production code
CVE-2006-7195 (Cross-site scripting (XSS) vulnerability in implicit-objects.jsp in ...)
- - tomcat5.5 5.5.20-1 (low)
- - tomcat5 <unfixed> (low)
- - tomcat4 <removed> (low)
- [sarge] - tomcat4 <no-dsa> (Contrib not supported)
+ - tomcat5.5 5.5.20-1 (unimportant)
+ - tomcat5 <removed> (unimportant)
+ - tomcat4 <removed> (unimportant)
+ NOTE: Only present in an example, not in production code
CVE-2007-XXXX [buffer overflow in mixmaster importing type 2 messages]
- mixmaster 3.0b2-5 (low; bug #418662)
[etch] - mixmaster 3.0b2-4.etch1
More information about the Secure-testing-commits
mailing list