Author: carnil
Date: 2016-06-20 18:33:40 +0000 (Mon, 20 Jun 2016)
New Revision: 42659
Modified:
data/CVE/list
Log:
Add three new struts issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-20 18:20:50 UTC (rev 42658)
+++ data/CVE/list 2016-06-20 18:33:40 UTC (rev 42659)
@@ -3717,12 +3717,18 @@
[jessie] - tika <no-dsa> (Minor issue, no standard alone package, just
a reverse dependency of jmeter)
CVE-2016-4433
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-039.html
CVE-2016-4432 (The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache
Qpid ...)
NOT-FOR-US: Apache Qpid Java Broker
CVE-2016-4431
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-040.html
CVE-2016-4430
RESERVED
+ - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1)
+ NOTE: https://struts.apache.org/docs/s2-038.html
CVE-2016-4429 (Stack-based buffer overflow in the clntudp_call function in ...)
- glibc 2.22-10
[jessie] - glibc <no-dsa> (Minor issue)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
