[Secure-testing-commits] r45798 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 31 13:50:19 UTC 2016
Author: carnil
Date: 2016-10-31 13:50:19 +0000 (Mon, 31 Oct 2016)
New Revision: 45798
Modified:
data/CVE/list
Log:
Record fixed versions for CVE-2016-0762
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-31 13:49:17 UTC (rev 45797)
+++ data/CVE/list 2016-10-31 13:50:19 UTC (rev 45798)
@@ -27094,8 +27094,8 @@
NOTE: Fixed in 6.0.45, 7.0.68, 8.0.32, 9.0.0.M3
CVE-2016-0762 [Apache Tomcat Realm Timing Attack]
RESERVED
- - tomcat8 <unfixed> (low)
- - tomcat7 <unfixed> (low; bug #842662)
+ - tomcat8 8.0.37-1 (low)
+ - tomcat7 7.0.72-1 (low; bug #842662)
- tomcat6 6.0.41-3 (low)
NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs
NOTE: http://markmail.org/message/pzuk6hauzljnm4r7?q=list:org.apache.tomcat.announce/
More information about the Secure-testing-commits
mailing list