[Git][security-tracker-team/security-tracker][master] Remove no-dsa tag for CVE-2018-11775 CVE-2017-15709

Abhijith PA abhijith at debian.org
Fri Mar 5 16:58:52 GMT 2021 


Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41b0542d by Abhijith PA at 2021-03-05T22:28:22+05:30
Remove no-dsa tag for CVE-2018-11775 CVE-2017-15709

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -176047,7 +176047,6 @@ CVE-2018-11776 (Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer fr
 	NOTE: https://cwiki.apache.org/confluence/display/WW/S2-057
 CVE-2018-11775 (TLS hostname verification when using the Apache ActiveMQ Client before ...)
 	- activemq 5.15.6-1 (low; bug #908950)
-	[stretch] - activemq <no-dsa> (Minor issue)
 	[jessie] - activemq <no-dsa> (Minor issue)
 	NOTE: http://activemq.apache.org/security-advisories.data/CVE-2018-11775-announcement.txt
 	NOTE: https://git-wip-us.apache.org/repos/asf?p=activemq.git;a=commit;h=bde7097fb8173cf871827df7811b3865679b963d
@@ -214378,7 +214377,6 @@ CVE-2017-15710 (In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to
 	NOTE: https://www.openwall.com/lists/oss-security/2018/03/24/8
 CVE-2017-15709 (When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 ...)
 	- activemq 5.15.3-1 (bug #890352)
-	[stretch] - activemq <no-dsa> (Minor issue)
 	[jessie] - activemq <not-affected> (Issue introduced with OpenWire protocol support)
 	[wheezy] - activemq <not-affected> (Issue introduced with OpenWire protocol support)
 CVE-2017-15708 (In Apache Synapse, by default no authentication is required for Java R ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41b0542da8de9a94b092d97848d6b20e37accad1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41b0542da8de9a94b092d97848d6b20e37accad1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210305/0eb79f95/attachment.htm>

More information about the debian-security-tracker-commits mailing list