[Secure-testing-commits] r7955 - data/CVE

stef-guest at alioth.debian.org stef-guest at alioth.debian.org
Fri Jan 18 06:18:20 UTC 2008 

Author: stef-guest
Date: 2008-01-18 06:18:17 +0000 (Fri, 18 Jan 2008)
New Revision: 7955

Modified:
   data/CVE/list
Log:
apache2 fixes

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-01-17 21:14:46 UTC (rev 7954)
+++ data/CVE/list	2008-01-18 06:18:17 UTC (rev 7955)
@@ -1175,11 +1175,11 @@
 CVE-2007-6423 (** DISPUTED ** ...)
 	- apache2 <not-affected> (disputed / only for Windows)
 CVE-2007-6422 (The balancer_handler function in mod_proxy_balancer in the Apache HTTP ...)
-	- apache2 <unfixed> (low)
+	- apache2 2.2.8-1 (low)
 	[etch] - apache2 <no-dsa> (minor issue)
 	[sarge] - apache2 <not-affected> (vulnerable code introduced in 2.2)
 CVE-2007-6421 (Cross-site scripting (XSS) vulnerability in balancer-manager in ...)
-	- apache2 <unfixed> (low)
+	- apache2 2.2.8-1 (low)
 	[etch] - apache2 <no-dsa> (minor issue)
 	[sarge] - apache2 <not-affected> (vulnerable code introduced in 2.2)
 CVE-2007-6420 (Cross-site request forgery (CSRF) vulnerability in the ...)
@@ -1252,7 +1252,7 @@
 	[etch] - gnome-screensaver <no-dsa> (Minor issue)
 CVE-2007-6388 (Cross-site scripting (XSS) vulnerability in mod_status in the Apache ...)
 	- apache <unfixed> (low)
-	- apache2 <unfixed> (low)
+	- apache2 2.2.8-1 (low)
 CVE-2007-6358 (pdftops.pl before 1.20 in alternate pdftops filter allows local users ...)
 	{DSA-1437-1}
 	- cupsys 1.3.5-1 (low; bug #456960)
@@ -1692,7 +1692,7 @@
 CVE-2008-0006
 	RESERVED
 CVE-2008-0005 (mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before ...)
-	- apache2 <unfixed> (low)
+	- apache2 2.2.8-1 (low)
 	- apache <unfixed> (low)
 CVE-2008-0004
 	RESERVED
@@ -5547,7 +5547,7 @@
 	[sarge] - apache <no-dsa> (minor issue)
 	[etch] - apache2 <no-dsa> (minor issue)
 	[etch] - apache <no-dsa> (minor issue)
-	- apache2 <unfixed> (low)
+	- apache2 2.2.8-1 (low)
 	- apache <unfixed> (low)
 	NOTE: pending for apache2 2.2.3-4+etch4 / etch r3
 	NOTE: pending for apache 1.3.34-4.1+etch1 / etch r3

More information about the Secure-testing-commits mailing list