[Secure-testing-commits] r22497 - data/CVE

Salvatore Bonaccorso Wed, 05 Jun 2013 08:32:13 -0700

Author: carnil
Date: 2013-06-05 15:31:49 +0000 (Wed, 05 Jun 2013)
New Revision: 22497


Modified:
   data/CVE/list
Log:
add CVE-2013-2134 and CVE-2013-2135, should only affect struts 2.x

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-06-05 12:17:25 UTC (rev 22496)
+++ data/CVE/list       2013-06-05 15:31:49 UTC (rev 22497)
@@ -3665,8 +3665,16 @@
        RESERVED
 CVE-2013-2135
        RESERVED
+       - libstruts1.2-java <undetermined>
+       NOTE: http://struts.apache.org/release/2.3.x/docs/s2-015.html
+       NOTE: only affects Struts 2.0.0 - Struts 2.3.14.2
+       TODO: check
 CVE-2013-2134
        RESERVED
+       - libstruts1.2-java <undetermined>
+       NOTE: http://struts.apache.org/release/2.3.x/docs/s2-015.html
+       NOTE: only affects Struts 2.0.0 - Struts 2.3.14.2
+       TODO: check
 CVE-2013-2133
        RESERVED
 CVE-2013-2132 [null pointer when decoding invalid DBRef]


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r22497 - data/CVE

Reply via email to