[Secure-testing-commits] r57223 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Wed Nov 1 22:33:02 UTC 2017
Author: apo
Date: 2017-11-01 22:33:02 +0000 (Wed, 01 Nov 2017)
New Revision: 57223
Modified:
data/CVE/list
Log:
CVE-2015-3249,trafficserver: Wheezy is not affected
HTTP2 support does not exist.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-01 22:16:05 UTC (rev 57222)
+++ data/CVE/list 2017-11-01 22:33:02 UTC (rev 57223)
@@ -93444,6 +93444,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/07/07/5
CVE-2015-3249 (The HTTP/2 experimental feature in Apache Traffic Server 5.3.x before ...)
- trafficserver 5.3.1-1
+ [wheezy] - trafficserver <not-affected> (HTTP2 support does not exist)
NOTE: http://mail-archives.us.apache.org/mod_mbox/www-announce/201507.mbox/%3CCABF6JR37mWzDmXDqRQwRUXiojBZrhidndnsY1ZgmcZv-o7-a+g@mail.gmail.com%3E
CVE-2015-3248 (openhpi/Makefile.am in OpenHPI before 3.6.0 uses world-writable ...)
- openhpi <not-affected> (Only affects RPM packaging, in Debian directory is not world-writable, bug #789543)
More information about the Secure-testing-commits
mailing list