[Secure-testing-commits] r18556 - data/CVE
Florian Weimer
fw at alioth.debian.org
Tue Feb 28 19:09:47 UTC 2012
Author: fw
Date: 2012-02-28 19:09:46 +0000 (Tue, 28 Feb 2012)
New Revision: 18556
Modified:
data/CVE/list
Log:
CVE-2011-3377 openjdk-6, icedtea-web
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-02-28 19:05:04 UTC (rev 18555)
+++ data/CVE/list 2012-02-28 19:09:46 UTC (rev 18556)
@@ -7953,8 +7953,11 @@
- rpm 4.9.1.2-1 (low; bug #645325)
[squeeze] - rpm 4.8.1-6+squeeze1
[lenny] - rpm <no-dsa> (rpm isn't used a a package manager, very limited attack vector)
-CVE-2011-3377
+CVE-2011-3377 [IcedTea browser plugin Same Origin Policy suffix issue]
RESERVED
+ - openjdk-6 6b21~pre1-1
+ - icedtea-web 1.1.4-1
+ NOTE: Browser plugin was removed in openjdk-6 6b21~pre1-1.
CVE-2011-3376 (org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat ...)
- tomcat7 7.0.22-1
CVE-2011-3375 (Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not ...)
More information about the Secure-testing-commits
mailing list