Author: joeyh
Date: 2011-02-13 21:15:35 +0000 (Sun, 13 Feb 2011)
New Revision: 16131
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-02-13 21:06:56 UTC (rev 16130)
+++ data/CVE/list 2011-02-13 21:15:35 UTC (rev 16131)
@@ -1059,6 +1059,7 @@
CVE-2011-0535 (Cross-site request forgery (CSRF) vulnerability in the Users
module in ...)
NOT-FOR-US: zikula
CVE-2011-0534 (Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does
not ...)
+ {DSA-2160-1}
- tomcat5.5 <not-affected> (Vulnerable code not present)
- tomcat6 6.0.28-10 (bug #612257)
[lenny] - tomcat6 <not-affected> (Only ships the servlet package)
@@ -2757,6 +2758,7 @@
[lenny] - openssl <not-affected> (Only 0.9.8h through 0.9.8q are
affected)
CVE-2011-0013 [tomcat HTML manager XSS]
RESERVED
+ {DSA-2160-1}
- tomcat5.5 <removed> (low)
[lenny] - tomcat5.5 <no-dsa> (Minor issue)
- tomcat6 6.0.28-10 (bug #612257)
@@ -2885,6 +2887,7 @@
RESERVED
CVE-2010-4476 [trivial DoS when parsing strings into Java Double objects]
RESERVED
+ {DSA-2161-1}
- openjdk-6 <unfixed> (bug #612660)
- sun-java6 <unfixed>
NOTE: Patch
http://mail.openjdk.java.net/pipermail/core-libs-dev/2011-February/005795.html
@@ -4852,6 +4855,7 @@
CVE-2010-3719 (Eval injection vulnerability in IMAdminSchedTask.asp in the ...)
NOT-FOR-US: Symantec IM Manager
CVE-2010-3718 (Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when
running ...)
+ {DSA-2160-1}
- tomcat5.5 <removed> (low)
[lenny] - tomcat5.5 <no-dsa> (Minor issue)
- tomcat6 6.0.28-10 (bug #612257)