From 3caadd439be074f61f2ce3718f976f7f981403d4 Mon Sep 17 00:00:00 2001
From: security tracker role <sectracker@soriano.debian.org>
Date: Wed, 6 Nov 2019 20:10:28 +0000
Subject: automatic update

---
 data/CVE/2009.list | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

(limited to 'data/CVE/2009.list')

diff --git a/data/CVE/2009.list b/data/CVE/2009.list
index 2d907ca1f0..af9ea9bb97 100644
--- a/data/CVE/2009.list
+++ b/data/CVE/2009.list
@@ -1127,8 +1127,7 @@ CVE-2009-4645 (Directory traversal vulnerability in web_client_user_guide.html i
 	NOT-FOR-US: Accellion Secure File Transfer Appliance
 CVE-2009-4644 (Accellion Secure File Transfer Appliance before 8_0_105 allows remote  ...)
 	NOT-FOR-US: Accellion Secure File Transfer Appliance
-CVE-2009-5050 [konversation DoS]
-	RESERVED
+CVE-2009-5050 (konversation before 1.2.3 allows attackers to cause a denial of servic ...)
 	- konversation 1.2.3-1 (low)
 	[lenny] - konversation <not-affected> (Doesn't affect the combination of kdelibs/QT in Lenny)
 	NOTE: http://bugs.kde.org/show_bug.cgi?id=219985
@@ -3395,13 +3394,11 @@ CVE-2009-5047 [multiple vulnerabilities in jetty]
 	- jetty 6.1.22-1 (unimportant; bug #553644)
 	NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt
 	NOTE: The affected apps are not shipped in the package, see #553644
-CVE-2009-5048 [multiple vulnerabilities in jetty]
-	RESERVED
+CVE-2009-5048 (Cookie Dump Servlet stored XSS vulnerability in jetty though 6.1.20. ...)
 	- jetty 6.1.22-1 (unimportant; bug #553644)
 	NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt
 	NOTE: The affected apps are not shipped in the package, see #553644
-CVE-2009-5049 [multiple vulnerabilities in jetty]
-	RESERVED
+CVE-2009-5049 (WebApp JSP Snoop page XSS in jetty though 6.1.21. ...)
 	- jetty 6.1.22-1 (unimportant; bug #553644)
 	NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt
 	NOTE: The affected apps are not shipped in the package, see #553644
-- 
cgit v1.2.3