Author: carnil Date: 2016-06-20 18:33:40 +0000 (Mon, 20 Jun 2016) New Revision: 42659
Modified: data/CVE/list Log: Add three new struts issues Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-06-20 18:20:50 UTC (rev 42658) +++ data/CVE/list 2016-06-20 18:33:40 UTC (rev 42659) @@ -3717,12 +3717,18 @@ [jessie] - tika <no-dsa> (Minor issue, no standard alone package, just a reverse dependency of jmeter) CVE-2016-4433 RESERVED + - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1) + NOTE: https://struts.apache.org/docs/s2-039.html CVE-2016-4432 (The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid ...) NOT-FOR-US: Apache Qpid Java Broker CVE-2016-4431 RESERVED + - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1) + NOTE: https://struts.apache.org/docs/s2-040.html CVE-2016-4430 RESERVED + - libstruts1.2-java <not-affected> (Only affects 2.3.20 to 2.3.38.1) + NOTE: https://struts.apache.org/docs/s2-038.html CVE-2016-4429 (Stack-based buffer overflow in the clntudp_call function in ...) - glibc 2.22-10 [jessie] - glibc <no-dsa> (Minor issue) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits