[jboss-jira] [JBoss JIRA] Commented: (JBWEB-163) CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2009-3555
[
https://jira.jboss.org/jira/browse/JBWEB-163?page=com.atlassian.jira.plug...
]
Mike Millson commented on JBWEB-163:
------------------------------------
1) CVE-2009-3555 fixed in r1269
2) CVE-2009-2693, CVE-2009-2901, CVE-2009-2902 fixed in r1383
CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2009-3555
----------------------------------------------------------
Key: JBWEB-163
URL: https://jira.jboss.org/jira/browse/JBWEB-163
Project: JBoss Web
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Core
Reporter: Mike Millson
Assignee: Mike Millson
Fix For: JBossWeb-3.0.0.Beta3
CVE-2009-2693 tomcat: unexpected file deletion and/or alteration
CVE-2009-2901 tomcat: insecure partial deploy after failed undeploy
CVE-2009-2902 tomcat: unexpected file deletion in work directory
CVE-2009-3555 TLS: MITM attacks via session renegotiation
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira