[Secure-testing-commits] r45795 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-10-31 13:46:51 +0000 (Mon, 31 Oct 2016)
New Revision: 45795

Modified:
   data/CVE/list
Log:
Add fixed versions for CVE-2016-6796

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-31 13:45:08 UTC (rev 45794)
+++ data/CVE/list	2016-10-31 13:46:51 UTC (rev 45795)
@@ -6605,8 +6605,8 @@
 	NOTE: Fixed by: http://svn.apache.org/r1757275 (7.0.x)
 CVE-2016-6796 [Apache Tomcat Security Manager Bypass]
 	RESERVED
-	- tomcat8 <unfixed> (low)
-	- tomcat7 <unfixed> (low; bug #842665)
+	- tomcat8 8.0.37-1 (low)
+	- tomcat7 7.0.72-1 (low; bug #842665)
 	- tomcat6 6.0.41-3 (low)
 	NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs
 	NOTE: http://markmail.org/message/hynaeawxxhpvvctu?q=list:org.apache.tomcat.announce/