[Secure-testing-commits] r21809 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue Apr 2 19:18:01 UTC 2013
Author: carnil
Date: 2013-04-02 19:18:01 +0000 (Tue, 02 Apr 2013)
New Revision: 21809
Modified:
data/CVE/list
Log:
update comment
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-04-02 18:54:33 UTC (rev 21808)
+++ data/CVE/list 2013-04-02 19:18:01 UTC (rev 21809)
@@ -15718,6 +15718,7 @@
CVE-2012-2942 (Buffer overflow in the trash buffer in the header capture ...)
- haproxy <unfixed> (bug #674447)
NOTE: According to upstream information this only was fixed in 1.4.21
+ NOTE: only a issue if using non-default value for global.tune.bufsize configuration option
NOTE: Reported as duplicate with CVE-2012-2391 http://seclists.org/oss-sec/2012/q2/417
TODO: check if closing information in #674447 is correct
CVE-2012-2941 (Cross-site scripting (XSS) vulnerability in search/ in Yandex.Server ...)
More information about the Secure-testing-commits
mailing list