[Secure-testing-commits] r26409 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Apr 2 05:55:57 UTC 2014
Author: carnil
Date: 2014-04-02 05:55:56 +0000 (Wed, 02 Apr 2014)
New Revision: 26409
Modified:
data/CVE/list
Log:
Update entry for CVE-2013-5705/modsecurity-apache
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-04-02 05:07:50 UTC (rev 26408)
+++ data/CVE/list 2014-04-02 05:55:56 UTC (rev 26409)
@@ -10311,7 +10311,8 @@
RESERVED
- modsecurity-apache 2.7.7-1
- libapache-mod-security <removed>
- TODO: check, fixed in 2.7.6
+ NOTE: Upstream commit: https://github.com/SpiderLabs/ModSecurity/commit/f8d441cd25172fdfe5b613442fedfc0da3cc333d
+ NOTE: http://martin.swende.se/blog/HTTPChunked.html
CVE-2013-5704 [bypass of mod_headers rules via chunked requests]
RESERVED
- apache2 <unfixed>
More information about the Secure-testing-commits
mailing list