[Secure-testing-commits] r14854 - data/CVE
Nico Golde
nion at alioth.debian.org
Thu Jun 10 18:09:39 UTC 2010
Author: nion
Date: 2010-06-10 18:09:37 +0000 (Thu, 10 Jun 2010)
New Revision: 14854
Modified:
data/CVE/list
Log:
CVE-2010-2103 doesnt affect axis, lets check axis2c ;)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-06-10 17:14:26 UTC (rev 14853)
+++ data/CVE/list 2010-06-10 18:09:37 UTC (rev 14854)
@@ -262,7 +262,8 @@
CVE-2010-2104 (Directory traversal vulnerability in Orbit Downloader 3.0.0.4 and ...)
NOT-FOR-US: Orbit Downloader
CVE-2010-2103 (Cross-site scripting (XSS) vulnerability in ...)
- - axis <undetermined>
+ - axis <not-affected> (axis != axis2, vulnerable code not present)
+ TODO: find out if the axis2 c implementation (axis2c) is affected by this
CVE-2010-2102 (Buffer overflow in Webby Webserver 1.01 allows remote attackers to ...)
NOT-FOR-US: Webby Webserver
CVE-2010-2101 (The (1) strip_tags, (2) setcookie, (3) strtok, (4) wordwrap, (5) ...)
More information about the Secure-testing-commits
mailing list