[Secure-testing-commits] r42659 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jun 20 18:33:40 UTC 2016
Author: carnil
Date: 2016-06-20 18:33:40 +0000 (Mon, 20 Jun 2016)
New Revision: 42659
Modified:
data/CVE/list
Log:
Add three new struts issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-20 18:20:50 UTC (rev 42658)
+++ data/CVE/list 2016-06-20 18:33:40 UTC (rev 42659)
@@ -3717,12 +3717,18 @@
[jessie] - tika <no-dsa> (Minor issue, no standard alone package, just a reverse dependency of jmeter)
CVE-2016-4433
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-039.html
CVE-2016-4432 (The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid ...)
NOT-FOR-US: Apache Qpid Java Broker
CVE-2016-4431
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-040.html
CVE-2016-4430
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-038.html
CVE-2016-4429 (Stack-based buffer overflow in the clntudp_call function in ...)
- glibc 2.22-10
[jessie] - glibc <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list