[Secure-testing-commits] r57150 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 30 21:31:17 UTC 2017
Author: carnil
Date: 2017-10-30 21:31:17 +0000 (Mon, 30 Oct 2017)
New Revision: 57150
Modified:
data/CVE/list
Log:
Add CVE-2016-3090/libstruts1.2-java
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-30 21:30:00 UTC (rev 57149)
+++ data/CVE/list 2017-10-30 21:31:17 UTC (rev 57150)
@@ -67332,7 +67332,8 @@
CVE-2016-3091 (Cloud Foundry Diego 0.1468.0 through 0.1470.0 allows remote attackers ...)
NOT-FOR-US: Cloud Foundry Diego
CVE-2016-3090 (The TextParseUtil.translateVariables method in Apache Struts 2.x ...)
- TODO: check
+ - libstruts1.2-java <removed>
+ NOTE: https://struts.apache.org/docs/s2-027.html
CVE-2016-3089 (Cross-site scripting (XSS) vulnerability in the SWF panel in Apache ...)
NOT-FOR-US: Apache OpenMeetings
CVE-2016-3088 (The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 ...)
More information about the Secure-testing-commits
mailing list