white at alioth.debian.org
2008-Jun-05 09:49 UTC
[Secure-testing-commits] r8993 - data/CVE
Author: white
Date: 2008-06-05 09:49:30 +0000 (Thu, 05 Jun 2008)
New Revision: 8993
Modified:
data/CVE/list
Log:
Add information about tomcat5.5 XSS
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-06-05 09:38:05 UTC (rev 8992)
+++ data/CVE/list 2008-06-05 09:49:30 UTC (rev 8993)
@@ -1228,8 +1228,10 @@
{DSA-1581-1}
- gnutls13 2.0.4-4 (medium)
- gnutls26 2.2.5-1 (medium)
-CVE-2008-1947
+CVE-2008-1947 [Cross-site scripting (XSS) vulnerability via the name parameter]
RESERVED
+ - tomcat5.5 <unfixed> (low; bug #484643)
+ TODO: Check whether tomcat5 in etch is affected
CVE-2008-1946
RESERVED
CVE-2008-1945