[Secure-testing-commits] r27803 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jul 18 08:50:11 UTC 2014
Author: jmm
Date: 2014-07-18 08:50:11 +0000 (Fri, 18 Jul 2014)
New Revision: 27803
Modified:
data/CVE/list
Log:
new apache issue
red hat NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-18 08:45:44 UTC (rev 27802)
+++ data/CVE/list 2014-07-18 08:50:11 UTC (rev 27803)
@@ -12919,6 +12919,9 @@
RESERVED
CVE-2014-0117
RESERVED
+ - apache2 <unfixed>
+ [squeeze] - apache2 <not-affected> (Affects 2.4.6 to 2.4.9)
+ [wheezy] - apache2 <not-affected> (Affects 2.4.6 to 2.4.9)
CVE-2014-0116 (CookieInterceptor in Apache Struts 2.x before 2.3.16.3, when a ...)
- libstruts1.2-java <not-affected> (Struts 2.0.0 through to Struts 2.3.16.2)
NOTE: https://cwiki.apache.org/confluence/display/WW/S2-022
@@ -13032,6 +13035,7 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1067265#c7
CVE-2014-0084
RESERVED
+ NOT-FOR-US: rubygem-openshift-origin-node
CVE-2014-0083 [SSHA passwords generated by the net-ldap Ruby gem use a weak salt]
RESERVED
- ruby-net-ldap <not-affected> (SSHA support not present)
More information about the Secure-testing-commits
mailing list