Update status for CVE-2016-6347

author: Salvatore Bonaccorso <carnil@debian.org> 2021-12-04 17:31:52 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-12-04 17:31:52 +0100
commit: f3ca450283ae397de292f2b868071c625326836e (patch)
tree: 9d4f40d2eb0e48d7017fc361e678f3a544e47cec /data
parent: d22c27e7c14b602bb2a4617687d766b954d51f3c (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list
index 4199f20a2e..4925188b70 100644
--- a/data/CVE/2016.list
+++ b/data/CVE/2016.list
@@ -14007,9 +14007,10 @@ CVE-2016-6348 (JacksonJsonpInterceptor in RESTEasy might allow remote attackers
 	- resteasy3.0 3.0.26-1
 	NOTE: https://github.com/resteasy/Resteasy/commit/7cc46c65b11de69b87ef8850dc68cca3de8cd7c6 (3.1.0.CR1)
 CVE-2016-6347 (Cross-site scripting (XSS) vulnerability in the default exception hand ...)
-	- resteasy <unfixed> (low; bug #837170)
+	- resteasy 3.1.0-1 (low; bug #837170)
 	[jessie] - resteasy <no-dsa> (Minor issue)
-	- resteasy3.0 <undetermined>
+	- resteasy3.0 3.0.26-1
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1372124
 CVE-2016-6346 (RESTEasy enables GZIPInterceptor, which allows remote attackers to cau ...)
 	- resteasy <unfixed> (low; bug #837170)
 	[jessie] - resteasy <no-dsa> (Minor issue)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-12-04 17:31:52 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-12-04 17:31:52 +0100
commit	f3ca450283ae397de292f2b868071c625326836e (patch)
tree	9d4f40d2eb0e48d7017fc361e678f3a544e47cec /data
parent	d22c27e7c14b602bb2a4617687d766b954d51f3c (diff)