Author: veithen
Date: Sat Jul 10 11:52:37 2010
New Revision: 962819
URL: http://svn.apache.org/viewvc?rev=962819&view=rev
Log:
Updated advisory CVE-2010-1632 with information about the impact on Geronimo.
Modified:
axis/axis2/java/core/security/CVE-2010-1632.pdf
axis/axis2/java/core/security/advisory-cve-2010-1632/src/docbkx/CVE-2010-1632.xml
Modified: axis/axis2/java/core/security/CVE-2010-1632.pdf
URL:
http://svn.apache.org/viewvc/axis/axis2/java/core/security/CVE-2010-1632.pdf?rev=962819&r1=962818&r2=962819&view=diff
==============================================================================
Binary files - no diff available.
Modified:
axis/axis2/java/core/security/advisory-cve-2010-1632/src/docbkx/CVE-2010-1632.xml
URL:
http://svn.apache.org/viewvc/axis/axis2/java/core/security/advisory-cve-2010-1632/src/docbkx/CVE-2010-1632.xml?rev=962819&r1=962818&r2=962819&view=diff
==============================================================================
---
axis/axis2/java/core/security/advisory-cve-2010-1632/src/docbkx/CVE-2010-1632.xml
(original)
+++
axis/axis2/java/core/security/advisory-cve-2010-1632/src/docbkx/CVE-2010-1632.xml
Sat Jul 10 11:52:37 2010
@@ -27,7 +27,7 @@
<surname>Veithen</surname>
<email>veit...@apache.org</email>
</author>
- <releaseinfo>First version: May 16, 2010 ⢠First published: June 13,
2010 ⢠Last updated: June 27, 2010</releaseinfo>
+ <releaseinfo>First version: May 16, 2010 ⢠First published: June 13,
2010 ⢠Last updated: July 10, 2010</releaseinfo>
</articleinfo>
<section>
<title>Description</title>
@@ -142,8 +142,9 @@
<listitem>
<para>
Axis2 is used by the Synapse, ODE, Tuscany and
Geronimo projects
- from the ASF and it is expected that all these
projects are
- vulnerable.
+ from the ASF. The vulnerability has been confirmed by
the Geronimo
+ project (see GERONIMO-5383 for more details). It is
expected that
+ all other projects in this list are vulnerable as well.
</para>
</listitem>
<listitem>
