[Secure-testing-commits] r53527 - data/CVE

Chris Lamb lamby at moszumanska.debian.org
Sun Jul 16 07:47:56 UTC 2017


Author: lamby
Date: 2017-07-16 07:47:56 +0000 (Sun, 16 Jul 2017)
New Revision: 53527

Modified:
   data/CVE/list
Log:
Add possible fix for CVE-2017-9788/apache.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-16 07:02:49 UTC (rev 53526)
+++ data/CVE/list	2017-07-16 07:47:56 UTC (rev 53527)
@@ -2508,6 +2508,7 @@
 CVE-2017-9788 (In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value ...)
 	- apache2 <unfixed> (bug #868467)
 	NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#2.4.27
+	NOTE: This might be the change: https://github.com/apache/httpd/commit/c5d3719133b9e5dab0d540c5aa03b2fdabc30395
 CVE-2017-9787 (When using a Spring AOP functionality to secure Struts actions it is ...)
 	TODO: check
 CVE-2017-9786




More information about the Secure-testing-commits mailing list