Package: libstruts1.2-java
Severity: important
Tags: patch, security
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for libstruts1.2-java.
CVE-2008-2025[0]:
| Cross-site scripting (XSS) vulnerability in Apache Struts before
| 1.2.9-162.31.1 on SUSE Linux Enterprise
Package: tomcat5.5
Severity: important
Tags: security
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for tomcat5.5.
CVE-2008-2938[0]:
| Directory traversal vulnerability in Apache Tomcat 4.1.0 through
| 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when
|
Package: tomcat5.5
Severity: grave
Tags: security
Justification: user security hole
Hi,
the following CVE (Common Vulnerabilities Exposures) ids were
published for tomcat5.5.
CVE-2008-1232[0]:
| Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.0
| through 4.1.37, 5.5.0 through
Package: tomcat5.5
Severity: important
Tags: security
Hi
The following CVE[0] has been issued against tomcat5.5
CVE-2008-1947:
Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through
5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject
arbitrary web script or HTML
Package: libjfreechart-java
Severity: important
Tags: security
Hi
The following CVE[0] has been issued against libjfreechart-java.
CVE-2007-6306:
Multiple cross-site scripting (XSS) vulnerabilities in the image map
feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary
web
Package: jetty
Severity: normal
Tags: security
Hi
The following CVE[0] has been issued against jetty:
CVE-2007-5615:
CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows
remote attackers to inject arbitrary HTTP headers and conduct HTTP
response splitting attacks via
Hi
There have been two more CVEs[0][1] for jetty:
CVE-2007-5613:
Cross-site scripting (XSS) vulnerability in Dump Servlet in Mortbay Jetty
before 6.1.6rc1 allows remote attackers to inject arbitrary web script or
HTML via unspecified parameters and cookies.
CVE-2007-5614:
Mortbay Jetty
7 matches
Mail list logo