[Secure-testing-commits] r13889 - data/CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Sat Jan 23 16:32:00 UTC 2010 

Author: derevko-guest
Date: 2010-01-23 16:32:00 +0000 (Sat, 23 Jan 2010)
New Revision: 13889

Modified:
   data/CVE/list
Log:
jboss4 issues already fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-01-23 16:10:13 UTC (rev 13888)
+++ data/CVE/list	2010-01-23 16:32:00 UTC (rev 13889)
@@ -3775,7 +3775,7 @@
 	{DSA-1934-1}
 	NOTE: See separate CVE-2009-3555 file in SVN
 CVE-2009-3554 (Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss ...)
-	- jbossas4 <unfixed> (bug #562000)
+	- jbossas4 4.2.2.GA-1 (bug #562000)
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)
 CVE-2009-3553 (Use-after-free vulnerability in the abstract file-descriptor handling ...)
 	- cups 1.4.2-4 (low; bug #557740)
@@ -7729,7 +7729,7 @@
 	[etch] - linux-2.6 <not-affected> (ecryptfs not yet present)
 	- linux-2.6.24 <removed>
 CVE-2009-2405 (Multiple cross-site scripting (XSS) vulnerabilities in the Web Console ...)
-	- jbossas4 <unfixed> (bug #562000)
+	- jbossas4 4.2.2.GA-1 (bug #562000)
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)
 CVE-2009-2404 (Heap-based buffer overflow in a regular-expression parser in Mozilla ...)
 	{DSA-1874-1}
@@ -10532,7 +10532,7 @@
 	{DSA-1802-2}
 	- squirrelmail 2:1.4.19-1
 CVE-2009-1380 (Cross-site scripting (XSS) vulnerability in JMX-Console in JBossAs in ...)
-	- jbossas4 <unfixed> (bug #562000)
+	- jbossas4 4.2.2.GA-1 (bug #562000)
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)
 CVE-2009-1379 (Use-after-free vulnerability in the dtls1_retrieve_buffered_fragment ...)
 	- openssl 0.9.8k-1 (low; bug #530400)
@@ -16577,7 +16577,7 @@
 	- linux-2.6 2.6.29-1
 	- linux-2.6.24 <removed>
 CVE-2009-0027 (The request handler in JBossWS in JBoss Enterprise Application ...)
-	- jbossas4 <unfixed> (bug #562000)
+	- jbossas4 4.2.2.GA-1 (bug #562000)
 	[lenny] - jbossas4 <no-dsa> (Contrib not supported)
 CVE-2009-0026 (Multiple cross-site scripting (XSS) vulnerabilities in Apache ...)
 	NOT-FOR-US: Apache Jackrabbit

More information about the Secure-testing-commits mailing list