[Git][security-tracker-team/security-tracker][master] Remove no-dsa tag for CVE-2018-11775 CVE-2017-15709
Abhijith PA
abhijith at debian.org
Fri Mar 5 16:58:52 GMT 2021
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
41b0542d by Abhijith PA at 2021-03-05T22:28:22+05:30
Remove no-dsa tag for CVE-2018-11775 CVE-2017-15709
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -176047,7 +176047,6 @@ CVE-2018-11776 (Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer fr
NOTE: https://cwiki.apache.org/confluence/display/WW/S2-057
CVE-2018-11775 (TLS hostname verification when using the Apache ActiveMQ Client before ...)
- activemq 5.15.6-1 (low; bug #908950)
- [stretch] - activemq <no-dsa> (Minor issue)
[jessie] - activemq <no-dsa> (Minor issue)
NOTE: http://activemq.apache.org/security-advisories.data/CVE-2018-11775-announcement.txt
NOTE: https://git-wip-us.apache.org/repos/asf?p=activemq.git;a=commit;h=bde7097fb8173cf871827df7811b3865679b963d
@@ -214378,7 +214377,6 @@ CVE-2017-15710 (In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to
NOTE: https://www.openwall.com/lists/oss-security/2018/03/24/8
CVE-2017-15709 (When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 ...)
- activemq 5.15.3-1 (bug #890352)
- [stretch] - activemq <no-dsa> (Minor issue)
[jessie] - activemq <not-affected> (Issue introduced with OpenWire protocol support)
[wheezy] - activemq <not-affected> (Issue introduced with OpenWire protocol support)
CVE-2017-15708 (In Apache Synapse, by default no authentication is required for Java R ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41b0542da8de9a94b092d97848d6b20e37accad1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41b0542da8de9a94b092d97848d6b20e37accad1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210305/0eb79f95/attachment.htm>
More information about the debian-security-tracker-commits
mailing list