white at alioth.debian.org
2007-Oct-07 10:43 UTC
[Secure-testing-commits] r6850 - data/CVE
Author: white Date: 2007-10-07 10:43:39 +0000 (Sun, 07 Oct 2007) New Revision: 6850 Modified: data/CVE/list Log: CVE-2007-4724 (libservlet2.4-java) fixed in sid Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-10-07 09:26:03 UTC (rev 6849) +++ data/CVE/list 2007-10-07 10:43:39 UTC (rev 6850) @@ -1116,7 +1116,7 @@ CVE-2007-4724 (Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the ...) - tomcat5.5-webapps <not-affected> (Version already ships fixed files) - tomcat5-webapps <unfixed> (unimportant; bug #441205) - - libservlet2.4-java <unfixed> (unimportant) + - libservlet2.4-java 5.0.30-6 (unimportant) NOTE: DSA should not be required, minor issue, jsp just present as example CVE-2007-4723 (Directory traversal vulnerability in Ragnarok Online Control Panel ...) NOT-FOR-US: Ragnarok