jmm-guest at alioth.debian.org
2008-Jan-07 20:17 UTC
[Secure-testing-commits] r7851 - data/CVE
Author: jmm-guest Date: 2008-01-07 20:17:39 +0000 (Mon, 07 Jan 2008) New Revision: 7851 Modified: data/CVE/list Log: more tomcat cleanups Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-07 20:10:09 UTC (rev 7850) +++ data/CVE/list 2008-01-07 20:17:39 UTC (rev 7851) @@ -11915,16 +11915,15 @@ CVE-2007-2108 (Unspecified vulnerability in the Core RDBMS component Oracle Database ...) NOT-FOR-US: Oracle CVE-2006-7196 (Cross-site scripting (XSS) vulnerability in the calendar application ...) - - tomcat5.5 5.5.16-1 (low) - - tomcat5 <unfixed> (low) - - tomcat4 <removed> (low) - [sarge] - tomcat4 <no-dsa> (Contrib not supported) - NOTE: Mark Thomas <markt at apache.org> reported on Bugtraq that it''s fixed in 5.5.16 + - tomcat5.5 5.5.16-1 (unimportant) + - tomcat5 <unfixed> (unimportant) + - tomcat4 <removed> (unimportant) + NOTE: Only present in an example, not in production code CVE-2006-7195 (Cross-site scripting (XSS) vulnerability in implicit-objects.jsp in ...) - - tomcat5.5 5.5.20-1 (low) - - tomcat5 <unfixed> (low) - - tomcat4 <removed> (low) - [sarge] - tomcat4 <no-dsa> (Contrib not supported) + - tomcat5.5 5.5.20-1 (unimportant) + - tomcat5 <removed> (unimportant) + - tomcat4 <removed> (unimportant) + NOTE: Only present in an example, not in production code CVE-2007-XXXX [buffer overflow in mixmaster importing type 2 messages] - mixmaster 3.0b2-5 (low; bug #418662) [etch] - mixmaster 3.0b2-4.etch1