tags 445283 + patch
thanks
Hi,
Greg Wilkins of jetty provides a patch from their cvs for
this issue.
You can find it on:
http://jetty.cvs.sourceforge.net/jetty/Jetty/src/org/mortbay/jetty/servlet/AbstractSessionManager.java?r1=1.52&r2=1.53&view=patch
Kind regards
Nico
--
Nico Golde - http://ngo
Package: jetty
Severity: grave
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for jetty.
CVE-2006-6969[0]:
| Jetty before 4.2.27, 5.1 before 5.1.12, 6.0 before 6.0.2, and 6.1
| before 6.1.0pre3 generates predictable session identifiers using
| java.util
2 matches
Mail list logo
