[Secure-testing-commits] r11830 - data/CVE

Nico Golde Thu, 07 May 2009 03:35:55 -0700

Author: nion
Date: 2009-05-07 10:35:48 +0000 (Thu, 07 May 2009)
New Revision: 11830


Modified:
   data/CVE/list
Log:
adjust severity for jetty issue, the package only being in unstable is no 
reason for the issue being unimportant


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2009-05-07 10:28:47 UTC (rev 11829)
+++ data/CVE/list       2009-05-07 10:35:48 UTC (rev 11830)
@@ -54,7 +54,8 @@
 CVE-2009-1525 (CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote 
...)
        NOT-FOR-US: Directadmin
 CVE-2009-1524 (Cross-site scripting (XSS) vulnerability in Mort Bay Jetty 
before ...)
-       - jetty <unfixed> (unimportant)
+       - jetty <unfixed> (low)
+       TODO: file bug
        NOTE: only in unstable, only in contrib, fairly unmaintained
 CVE-2009-1523 (Directory traversal vulnerability in the HTTP server in Mort 
Bay Jetty ...)
        - jetty <unfixed> (unimportant)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r11830 - data/CVE

Reply via email to