[Secure-testing-commits] r48887 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-02-13 21:55:06 +0000 (Mon, 13 Feb 2017)
New Revision: 48887

Modified:
   data/CVE/list
Log:
new tomcat issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-02-13 21:46:04 UTC (rev 48886)
+++ data/CVE/list	2017-02-13 21:55:06 UTC (rev 48887)
@@ -1,3 +1,10 @@
+CVE-2017-XXXX [tomcat DoS via infinite loop in HTTPS request processing]
+	- tomcat8 <unfixed> (bug #851304)
+	[jessie] - tomcat8 8.0.14-1+deb8u7
+	- tomcat7 7.0.72-3
+	[jessie] - tomcat7 7.0.56-3+deb8u8
+	NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
+	NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=57544
 CVE-2017-5981
 	RESERVED
 CVE-2017-5980