[Secure-testing-commits] r11830 - data/CVE
Nico Golde
nion at alioth.debian.org
Thu May 7 10:35:49 UTC 2009
Author: nion
Date: 2009-05-07 10:35:48 +0000 (Thu, 07 May 2009)
New Revision: 11830
Modified:
data/CVE/list
Log:
adjust severity for jetty issue, the package only being in unstable is no reason for the issue being unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-07 10:28:47 UTC (rev 11829)
+++ data/CVE/list 2009-05-07 10:35:48 UTC (rev 11830)
@@ -54,7 +54,8 @@
CVE-2009-1525 (CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote ...)
NOT-FOR-US: Directadmin
CVE-2009-1524 (Cross-site scripting (XSS) vulnerability in Mort Bay Jetty before ...)
- - jetty <unfixed> (unimportant)
+ - jetty <unfixed> (low)
+ TODO: file bug
NOTE: only in unstable, only in contrib, fairly unmaintained
CVE-2009-1523 (Directory traversal vulnerability in the HTTP server in Mort Bay Jetty ...)
- jetty <unfixed> (unimportant)
More information about the Secure-testing-commits
mailing list