[Secure-testing-commits] r45053 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 5 07:49:15 UTC 2016
Author: carnil
Date: 2016-10-05 07:49:15 +0000 (Wed, 05 Oct 2016)
New Revision: 45053
Modified:
data/CVE/list
Log:
Mark CVE-2015-1832 as NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-05 05:40:53 UTC (rev 45052)
+++ data/CVE/list 2016-10-05 07:49:15 UTC (rev 45053)
@@ -46683,7 +46683,7 @@
- jackrabbit 2.10.1-1 (bug #787316)
NOTE: https://issues.apache.org/jira/browse/JCR-3883
CVE-2015-1832 (XML external entity (XXE) vulnerability in the SqlXmlUtil code in ...)
- TODO: check
+ NOT-FOR-US: Apache Derby
CVE-2015-1831 (The default exclude patterns (excludeParams) in Apache Struts 2.3.20 ...)
- libstruts1.2-java <not-affected> (Affects only 2.3.20)
NOTE: https://struts.apache.org/docs/s2-024.html
More information about the Secure-testing-commits
mailing list