[Secure-testing-commits] r56430 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 5 13:49:56 UTC 2017
Author: carnil
Date: 2017-10-05 13:49:56 +0000 (Thu, 05 Oct 2017)
New Revision: 56430
Modified:
data/CVE/list
Log:
Correct status for CVE-2017-12617, thanks mdeslaur on IRC
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-05 13:41:09 UTC (rev 56429)
+++ data/CVE/list 2017-10-05 13:49:56 UTC (rev 56430)
@@ -6958,7 +6958,18 @@
CVE-2017-12618
RESERVED
CVE-2017-12617 (When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to ...)
- - tomcat7 <not-affected> (Windows-specific)
+ - tomcat9 <itp> (bug #802312)
+ - tomcat8 <unfixed>
+ - tomcat7 7.0.72-3
+ NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
+ NOTE: https://svn.apache.org/r1809673 (8.5.x)
+ NOTE: https://svn.apache.org/r1809675 (8.5.x)
+ NOTE: https://svn.apache.org/r1809896 (8.5.x)
+ NOTE: https://svn.apache.org/r1809921 (8.0.x)
+ NOTE: https://svn.apache.org/r1809978 (7.0.x)
+ NOTE: https://svn.apache.org/r1809992 (7.0.x)
+ NOTE: https://svn.apache.org/r1810014 (7.0.x)
+ NOTE: https://svn.apache.org/r1810026 (7.0.x)
CVE-2017-12616 (When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it ...)
{DLA-1108-1}
- tomcat7 7.0.72-3
More information about the Secure-testing-commits
mailing list