[Secure-testing-commits] r30691 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Fri Dec 12 10:10:54 UTC 2014
Author: hertzog
Date: 2014-12-12 10:10:54 +0000 (Fri, 12 Dec 2014)
New Revision: 30691
Modified:
data/CVE/list
Log:
Mark CVE-2014-3583/apache2 as no-dsa for squeeze too
We follow the decision taken for wheezy.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-12 10:10:48 UTC (rev 30690)
+++ data/CVE/list 2014-12-12 10:10:54 UTC (rev 30691)
@@ -14611,6 +14611,7 @@
RESERVED
- apache2 2.4.10-8 (low)
[wheezy] - apache2 <no-dsa> (minor issue)
+ [squeeze] - apache2 <no-dsa> (minor issue)
NOTE: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/mod_proxy_fcgi.c?r1=1618401&r2=1638818
NOTE: Only exploitable by a malicious fcgi script.
CVE-2014-3582
More information about the Secure-testing-commits
mailing list