diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
| commit | 55209111420611113a36ce06258801912d5cf7d1 (patch) | |
| tree | 6bfe6e45fec5057b99168fb47e6671d30a4b64b3 /data/CVE/list.2009 | |
| parent | 2bdab33f5ce23421368177fa3a540ea90dd53ba2 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/list.2009')
| -rw-r--r-- | data/CVE/list.2009 | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/data/CVE/list.2009 b/data/CVE/list.2009 index 4c87550204..80be21c706 100644 --- a/data/CVE/list.2009 +++ b/data/CVE/list.2009 @@ -1238,7 +1238,7 @@ CVE-2009-4613 (SQL injection vulnerability in realestate20/loginaction.php in Ne NOT-FOR-US: NetArt Media Real Estate Portal CVE-2009-4612 (Multiple cross-site scripting (XSS) vulnerabilities in the WebApp JSP ...) - jetty 6.1.22-1 (bug #575789) -CVE-2009-4611 (Mort Bay Jetty 6.x and 7.0.0 writes backtrace data without sanitizing ...) +CVE-2009-4611 (Mort Bay Jetty 6.x through 6.1.22 and 7.0.0 writes backtrace data with ...) - jetty 6.1.22-1 CVE-2009-4610 (Multiple cross-site scripting (XSS) vulnerabilities in Mort Bay Jetty ...) - jetty <not-affected> (low; bug #575790) @@ -3385,7 +3385,8 @@ CVE-2009-5046 (JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. ... - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 -CVE-2009-5047 (Jetty 6.x before 6.1.22 suffers from an escape sequence injection vuln ...) +CVE-2009-5047 + REJECTED - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 |