<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/recipes-security/nikto/files, branch test</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=test</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=test'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2019-01-06T16:02:28+00:00</updated>
<entry>
<title>nikto: upgrade to 2.1.6 (v2)</title>
<updated>2019-01-06T16:02:28+00:00</updated>
<author>
<name>Scott Ellis</name>
<email>scottellis.developer@gmail.com</email>
</author>
<published>2018-12-28T21:35:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=b4441953a586910c6a30ef1218396d133d6bf14e'/>
<id>urn:sha1:b4441953a586910c6a30ef1218396d133d6bf14e</id>
<content type='text'>
Source now on github.

Signed-off-by: Scott Ellis &lt;scott@jumpnowtek.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>CVE-2018-11652 nikto: arbitray OS command injection via http server field.</title>
<updated>2018-07-03T22:30:51+00:00</updated>
<author>
<name>Nagalakshmi Veeramallu</name>
<email>nveeramallu@mvista.com</email>
</author>
<published>2018-06-29T10:08:25+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=a1406fe1c88308da81af907d11d21e2c03ee0c01'/>
<id>urn:sha1:a1406fe1c88308da81af907d11d21e2c03ee0c01</id>
<content type='text'>
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers
to inject arbitrary OS commands via the Server field in an HTTP response header,
 which is directly injected into a CSV report.

Signed-off-by: Nagalakshmi Veeramallu &lt;nveeramallu@mvista.com&gt;
Reviewed-by: Jagadeesh Krishnanjanappa &lt;jkrishnanjanappa@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
</content>
</entry>
<entry>
<title>Security layer version 1.0</title>
<updated>2013-07-10T13:41:44+00:00</updated>
<author>
<name>Andrei Dinu</name>
<email>andrei.adrianx.dinu@intel.com</email>
</author>
<published>2013-07-10T13:41:44+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=d54c9d7dadfddcd60ca11be23c5a2946f8a1b385'/>
<id>urn:sha1:d54c9d7dadfddcd60ca11be23c5a2946f8a1b385</id>
<content type='text'>
Signed-off-by: Andrei Dinu &lt;andrei.adrianx.dinu@intel.com&gt;
</content>
</entry>
</feed>
