Author: jmm-guest Date: 2006-04-24 13:24:42 +0000 (Mon, 24 Apr 2006) New Revision: 3868 Modified: data/CVE/list Log: struts fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-04-24 09:14:24 UTC (rev 3867) +++ data/CVE/list 2006-04-24 13:24:42 UTC (rev 3868) @@ -1077,13 +1077,13 @@ CVE-2005-4749 (HTTP request smuggling vulnerability in BEA WebLogic Server and ...) NOT-FOR-US: BEA WebLogic CVE-2006-1548 (Cross-site scripting (XSS) vulnerability in (1) LookupDispatchAction ...) - - libstruts1.2-java <unfixed> (bug #360551) + - libstruts1.2-java 1.2.9-1 (bug #360551) [sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java) CVE-2006-1547 (ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 ...) - - libstruts1.2-java <unfixed> (bug #360551) + - libstruts1.2-java 1.2.9-1 (bug #360551) [sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java) CVE-2006-1546 (Apache Software Foundation (ASF) Struts before 1.2.9 allows remote ...) - - libstruts1.2-java <unfixed> (bug #360551) + - libstruts1.2-java 1.2.9-1 (bug #360551) [sarge] - libstruts1.2-java <no-dsa> (Only in contrib, relies on proprietary Java) CVE-2006-1545 (Direct static code injection vulnerability in admin/config.php in ...) NOT-FOR-US: VNews