[Secure-testing-commits] r41055 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-04-22 04:54:09 +0000 (Fri, 22 Apr 2016)
New Revision: 41055

Modified:
   data/CVE/list
Log:
Add CVE-2015-8212/bozohttpd

Thanks: Sander Bos

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-04-22 04:17:04 UTC (rev 41054)
+++ data/CVE/list	2016-04-22 04:54:09 UTC (rev 41055)
@@ -13179,8 +13179,11 @@
 	NOTE: https://github.com/django/django/commit/316bc3fc9437c5960c24baceb93c73f1939711e4 (master)
 	NOTE: https://github.com/django/django/commit/8a01c6b53169ee079cb21ac5919fdafcc8c5e172 (1.7.x)
 	NOTE: https://www.djangoproject.com/weblog/2015/nov/24/security-releases-issued/
-CVE-2015-8212
-	RESERVED
+CVE-2015-8212 [bozohttpd CGI handlers potential remote code execution]
+	- bozohttpd <removed>
+	NOTE: http://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2016-005.txt.asc
+	NOTE: http://www.eterna.com.au/bozohttpd/CHANGES
+	NOTE: http://www.eterna.com.au/bozohttpd/bozohttpd-20160415.tar.bz2
 CVE-2015-8211
 	RESERVED
 CVE-2015-8210