[Secure-testing-commits] r53543 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 16 09:37:05 UTC 2017
Author: carnil
Date: 2017-07-16 09:37:05 +0000 (Sun, 16 Jul 2017)
New Revision: 53543
Modified:
data/CVE/list
Log:
Mark CVE-2017-9789 as not-affected for all suites
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-16 09:35:43 UTC (rev 53542)
+++ data/CVE/list 2017-07-16 09:37:05 UTC (rev 53543)
@@ -2523,10 +2523,8 @@
CVE-2017-9790
RESERVED
CVE-2017-9789 (When under stress, closing many connections, the HTTP/2 handling code ...)
- - apache2 <unfixed>
- [wheezy] - apache2 <not-affected> (Vulnerable code not present, no mod_http2)
+ - apache2 <not-affected> (Only affected 2.4.26)
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#2.4.27
- TODO: check, possibly affects only 2.4.26
CVE-2017-9788 (In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value ...)
- apache2 2.4.27-1 (bug #868467)
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#2.4.27
More information about the Secure-testing-commits
mailing list