[Secure-testing-commits] r22497 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Wed Jun 5 15:31:50 UTC 2013
Author: carnil
Date: 2013-06-05 15:31:49 +0000 (Wed, 05 Jun 2013)
New Revision: 22497
Modified:
data/CVE/list
Log:
add CVE-2013-2134 and CVE-2013-2135, should only affect struts 2.x
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-05 12:17:25 UTC (rev 22496)
+++ data/CVE/list 2013-06-05 15:31:49 UTC (rev 22497)
@@ -3665,8 +3665,16 @@
RESERVED
CVE-2013-2135
RESERVED
+ - libstruts1.2-java <undetermined>
+ NOTE: http://struts.apache.org/release/2.3.x/docs/s2-015.html
+ NOTE: only affects Struts 2.0.0 - Struts 2.3.14.2
+ TODO: check
CVE-2013-2134
RESERVED
+ - libstruts1.2-java <undetermined>
+ NOTE: http://struts.apache.org/release/2.3.x/docs/s2-015.html
+ NOTE: only affects Struts 2.0.0 - Struts 2.3.14.2
+ TODO: check
CVE-2013-2133
RESERVED
CVE-2013-2132 [null pointer when decoding invalid DBRef]
More information about the Secure-testing-commits
mailing list