diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2019-11-21 20:10:30 +0000 |
| commit | 0b10e9c5c72e4b990ab897d3efc6e908881dee28 (patch) | |
| tree | 4bec06605daf29784c5d92d0b829b66042f6f212 /data/CVE/2009.list | |
| parent | 378e080e55724f6489b2d72d99606c24eb6ad183 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2009.list')
| -rw-r--r-- | data/CVE/2009.list | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/data/CVE/2009.list b/data/CVE/2009.list index 4c87550204..80be21c706 100644 --- a/data/CVE/2009.list +++ b/data/CVE/2009.list @@ -1238,7 +1238,7 @@ CVE-2009-4613 (SQL injection vulnerability in realestate20/loginaction.php in Ne NOT-FOR-US: NetArt Media Real Estate Portal CVE-2009-4612 (Multiple cross-site scripting (XSS) vulnerabilities in the WebApp JSP ...) - jetty 6.1.22-1 (bug #575789) -CVE-2009-4611 (Mort Bay Jetty 6.x and 7.0.0 writes backtrace data without sanitizing ...) +CVE-2009-4611 (Mort Bay Jetty 6.x through 6.1.22 and 7.0.0 writes backtrace data with ...) - jetty 6.1.22-1 CVE-2009-4610 (Multiple cross-site scripting (XSS) vulnerabilities in Mort Bay Jetty ...) - jetty <not-affected> (low; bug #575790) @@ -3385,7 +3385,8 @@ CVE-2009-5046 (JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. ... - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 -CVE-2009-5047 (Jetty 6.x before 6.1.22 suffers from an escape sequence injection vuln ...) +CVE-2009-5047 + REJECTED - jetty 6.1.22-1 (unimportant; bug #553644) NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt NOTE: The affected apps are not shipped in the package, see #553644 |