[Secure-testing-commits] r55912 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Sep 19 21:25:30 UTC 2017
Author: jmm
Date: 2017-09-19 21:25:30 +0000 (Tue, 19 Sep 2017)
New Revision: 55912
Modified:
data/CVE/list
Log:
solr n/a
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-19 21:23:21 UTC (rev 55911)
+++ data/CVE/list 2017-09-19 21:25:30 UTC (rev 55912)
@@ -11728,7 +11728,7 @@
NOTE: DOS class vulnerability and classified as low by upstream.
NOTE: https://struts.apache.org/docs/s2-050.html
CVE-2017-9803 (Solr's Kerberos plugin can be configured to use delegation tokens, ...)
- TODO: check
+ - lucene-solr <not-affected> (Introduced in 6.2)
CVE-2017-9802 (The Javascript method Sling.evalString() in Apache Sling Servlets Post ...)
NOT-FOR-US: Apache Sling
CVE-2017-9801 (When a call-site passes a subject for an email that contains ...)
More information about the Secure-testing-commits
mailing list