[Secure-testing-commits] r40001 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Feb 28 12:13:29 UTC 2016
Author: carnil
Date: 2016-02-28 12:13:29 +0000 (Sun, 28 Feb 2016)
New Revision: 40001
Modified:
data/CVE/list
Log:
Update status for tomcat6 in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-28 11:36:59 UTC (rev 40000)
+++ data/CVE/list 2016-02-28 12:13:29 UTC (rev 40001)
@@ -5685,7 +5685,7 @@
- tomcat9 <itp> (bug #802312)
- tomcat8 8.0.32-1
- tomcat7 7.0.68-1
- - tomcat6 <unfixed>
+ - tomcat6 6.0.45+dfsg-1
NOTE: Fixed in 6.0.45, 7.0.68, 8.0.32, 9.0.0.M3
CVE-2016-0762
RESERVED
@@ -5869,7 +5869,7 @@
- tomcat9 <itp> (bug #802312)
- tomcat8 8.0.32-1
- tomcat7 7.0.68-1
- - tomcat6 <unfixed>
+ - tomcat6 6.0.45+dfsg-1
NOTE: Fixed in 6.0.45, 7.0.68, 8.0.32, 9.0.0.M3
CVE-2016-0713
RESERVED
@@ -5890,7 +5890,7 @@
- tomcat9 <itp> (bug #802312)
- tomcat8 8.0.32-1
- tomcat7 7.0.68-1
- - tomcat6 <unfixed>
+ - tomcat6 6.0.45+dfsg-1
NOTE: Fixed in 6.0.45, 7.0.68, 8.0.32, 9.0.0.M3
CVE-2016-0705
RESERVED
@@ -16607,6 +16607,9 @@
- tomcat7 7.0.68-1
- tomcat6 <undetermined>
NOTE: Fixed in 7.0.68, 8.0.32, 9.0.0.M3
+ NOTE: Unstable upload marks CVe-2015-5351 as fixed in tomcat6/6.0.45+dfsg-1 but
+ NOTE: upstream advisory does not make reference to 6.x
+ TODO: check 6.x series
CVE-2015-5350
RESERVED
CVE-2015-5349
@@ -16634,7 +16637,7 @@
- tomcat9 <itp> (bug #802312)
- tomcat8 8.0.30-1
- tomcat7 7.0.68-1
- - tomcat6 <unfixed>
+ - tomcat6 6.0.45+dfsg-1
NOTE: Fixed in 6.0.45, 7.0.67, 8.0.30, 9.0.0.M3
CVE-2015-5344 (The camel-xstream component in Apache Camel before 2.15.5 and 2.16.x ...)
NOT-FOR-US: Apache Camel
@@ -17339,7 +17342,7 @@
{DLA-435-1}
- tomcat8 8.0.28-1
- tomcat7 7.0.68-1
- - tomcat6 <unfixed>
+ - tomcat6 6.0.45+dfsg-1
NOTE: Fixed in 6.0.45, 7.0.65, 8.0.27
CVE-2015-5173
RESERVED
More information about the Secure-testing-commits
mailing list