[Secure-testing-commits] r34279 - data/CVE
Santiago Ruano Rincón
santiago at moszumanska.debian.org
Thu May 14 22:56:27 UTC 2015
Author: santiago
Date: 2015-05-14 22:56:27 +0000 (Thu, 14 May 2015)
New Revision: 34279
Modified:
data/CVE/list
Log:
Update tomcat6's bug numbers on CVE-2014-02{27,30}
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-14 21:10:17 UTC (rev 34278)
+++ data/CVE/list 2015-05-14 22:56:27 UTC (rev 34279)
@@ -36442,20 +36442,20 @@
- apache2 2.4.10-1
CVE-2014-0230 [non-persistent DoS attack by feeding data by aborting an upload]
RESERVED
- - tomcat6 6.0.41-3
+ - tomcat6 6.0.41-3 (bug #785316)
- tomcat7 <unfixed>
[jessie] - tomcat7 <no-dsa> (Minor issue)
- tomcat8 <unfixed>
[jessie] - tomcat8 <no-dsa> (Minor issue)
NOTE: tomcat6 in jessie only builds the servlet API classes
- NOTE: https://svn.apache.org/viewvc?view=revision&revision=1603781
- NOTE: Fix for tomcat6: https://svn.apache.org/viewvc?view=revision&revision=1659537
+ NOTE: https://svn.apache.org/viewvc?view=revision&revision=1603781 (7.x)
+ NOTE: https://svn.apache.org/viewvc?view=revision&revision=1659537 (6.x)
CVE-2014-0229
RESERVED
CVE-2014-0228 (Apache Hive before 0.13.1, when in SQL standards based authorization ...)
NOT-FOR-US: Apache Hive
CVE-2014-0227 (java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in ...)
- - tomcat6 6.0.41-3
+ - tomcat6 6.0.41-3 (bug #785312)
NOTE: Fixed in https://svn.apache.org/viewvc?view=revision&revision=1603628 (6.x)
NOTE: Marked as fixed in 6.0.41-3 which only builds the libservlet2.5-java and libservlet2.5-java-doc packages
- tomcat7 7.0.55-1
More information about the Secure-testing-commits
mailing list