[Secure-testing-commits] r30011 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-11-13 08:17:47 +0000 (Thu, 13 Nov 2014)
New Revision: 30011

Modified:
   data/CVE/list
Log:
Add CVE-2014-3583/apache2

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-13 07:53:12 UTC (rev 30010)
+++ data/CVE/list	2014-11-13 08:17:47 UTC (rev 30011)
@@ -11842,8 +11842,11 @@
 	RESERVED
 CVE-2014-3584 (The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before ...)
 	NOT-FOR-US: Apache CXF
-CVE-2014-3583
+CVE-2014-3583 [mod_proxy_fcgi heap-based buffer overflow ]
 	RESERVED
+	- apache2 <unfixed>
+	NOTE: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/mod_proxy_fcgi.c?r1=1618401&r2=1638818
+	TODO: check
 CVE-2014-3582
 	RESERVED
 CVE-2014-3581 (The cache_merge_headers_out function in modules/cache/cache_util.c in ...)