From 40a734225524783d1e9592c4cc8570f20b518b52 Mon Sep 17 00:00:00 2001
From: security tracker role <sectracker@soriano.debian.org>
Date: Thu, 7 Nov 2019 08:10:19 +0000
Subject: automatic update

---
 data/CVE/2009.list | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

(limited to 'data/CVE/2009.list')

diff --git a/data/CVE/2009.list b/data/CVE/2009.list
index af9ea9bb97..c218530496 100644
--- a/data/CVE/2009.list
+++ b/data/CVE/2009.list
@@ -3379,13 +3379,11 @@ CVE-2009-3779 (Cross-site scripting (XSS) vulnerability in vCard 5.x before 5.x-
 	NOT-FOR-US: module for Drupal
 CVE-2009-3778 (SQL injection vulnerability in Moodle Course List 6.x before 6.x-1.2,  ...)
 	NOT-FOR-US: module for Drupal
-CVE-2009-5045 [multiple vulnerabilities in jetty]
-	RESERVED
+CVE-2009-5045 (Dump Servlet information leak in jetty before 6.1.22. ...)
 	- jetty 6.1.22-1 (unimportant; bug #553644)
 	NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt
 	NOTE: The affected apps are not shipped in the package, see #553644
-CVE-2009-5046 [multiple vulnerabilities in jetty]
-	RESERVED
+CVE-2009-5046 (JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. ...)
 	- jetty 6.1.22-1 (unimportant; bug #553644)
 	NOTE: http://www.ush.it/team/ush/hack-jetty6x7x/jetty-adv.txt
 	NOTE: The affected apps are not shipped in the package, see #553644
-- 
cgit v1.2.3