[Secure-testing-commits] r32126 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 10 06:05:09 UTC 2015
Author: carnil
Date: 2015-02-10 06:05:09 +0000 (Tue, 10 Feb 2015)
New Revision: 32126
Modified:
data/CVE/list
Log:
Add tomcat issue, CVE-2014-0227
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-10 05:52:18 UTC (rev 32125)
+++ data/CVE/list 2015-02-10 06:05:09 UTC (rev 32126)
@@ -29105,8 +29105,15 @@
RESERVED
CVE-2014-0228 (Apache Hive before 0.13.1, when in SQL standards based authorization ...)
NOT-FOR-US: Apache Hive
-CVE-2014-0227
+CVE-2014-0227 [Request Smuggling]
RESERVED
+ - tomcat6 <unfixed>
+ NOTE: Fixed in https://svn.apache.org/viewvc?view=revision&revision=1603628 (6.x)
+ - tomcat7 7.0.55-1
+ NOTE: Fixed in https://svn.apache.org/viewvc?view=revision&revision=1601333 (7.x)
+ - tomcat8 8.0.9-1
+ NOTE: Fixed in https://svn.apache.org/viewvc?view=revision&revision=1600984 (8.x)
+ NOTE: Fixed in https://svn.apache.org/viewvc?view=revision&revision=1601332 (8.x)
CVE-2014-0226 (Race condition in the mod_status module in the Apache HTTP Server ...)
{DSA-2989-1 DLA-66-1}
- apache2 2.4.10-1
More information about the Secure-testing-commits
mailing list