[Secure-testing-commits] r33637 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Apr 16 12:38:07 UTC 2015


Author: jmm
Date: 2015-04-16 12:38:07 +0000 (Thu, 16 Apr 2015)
New Revision: 33637

Modified:
   data/CVE/list
Log:
new libapache-mod-jk issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-16 11:07:27 UTC (rev 33636)
+++ data/CVE/list	2015-04-16 12:38:07 UTC (rev 33637)
@@ -10509,6 +10509,7 @@
 	NOTE: https://github.com/libuv/libuv/pull/215
 CVE-2015-0277
 	RESERVED
+	NOT-FOR-US: PicketLink
 CVE-2015-0276
 	RESERVED
 	- kallithea <itp> (bug #689573)
@@ -13612,6 +13613,8 @@
 	- 389-ds-base 1.3.3.5-4 (bug #779909)
 CVE-2014-8111
 	RESERVED
+	- libapache-mod-jk <unfixed>
+        NOTE: Fix: http://svn.apache.org/r1647017
 CVE-2014-8110 (Multiple cross-site scripting (XSS) vulnerabilities in the web based ...)
 	- activemq <not-affected> (Admin console not enabled in the Debian package, see #702670)
 	NOTE: http://activemq.apache.org/security-advisories.data/CVE-2014-8110-announcement.txt




More information about the Secure-testing-commits mailing list