[Secure-testing-commits] r47305 - data/CVE
Ola Lundqvist
opal at moszumanska.debian.org
Wed Dec 21 22:07:21 UTC 2016
Author: opal
Date: 2016-12-21 22:07:21 +0000 (Wed, 21 Dec 2016)
New Revision: 47305
Modified:
data/CVE/list
Log:
Start of apache2 triage.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-21 21:47:34 UTC (rev 47304)
+++ data/CVE/list 2016-12-21 22:07:21 UTC (rev 47305)
@@ -11275,6 +11275,10 @@
RESERVED
- apache2 <unfixed>
NOTE: https://lists.apache.org/thread.html/139862b41c0dfd5e6e00ad89c00119f9faf0dd41a2f927da9c9a4076@%3Cannounce.httpd.apache.org%3E
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
+ NOTE: The fix is not fully backwards compatible so upstream have
+ NOTE: created a new option to control this behaviour. This means that
+ NOTE: if this is fixed the security advisory need to mention this.
NOTE: Affects: 2.2.0 to 2.4.23.
NOTE: Fixed in 2.4.25.
CVE-2016-8742
More information about the Secure-testing-commits
mailing list