Bug#657870: Multiple issues in Struts
Damien Raude-Morvan
drazzib at debian.org
Thu Feb 16 18:42:09 UTC 2012
Hi Moritz,
On 09/02/2012 21:16, Moritz Mühlenhoff wrote:
> There's a new issues, which affects 1.x:
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1007
From [1], it seems there is no actual fix for this issue :(
I'll contact Struts Security Team on this matter.
[1]
http://secpod.org/advisories/SecPod_Apache_Struts_Multiple_Parsistant_XSS_Vulns.txt
--
Damien - Debian Developper
http://wiki.debian.org/DamienRaudeMorvan
More information about the pkg-java-maintainers
mailing list