[Secure-testing-commits] r57144 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Oct 30 20:34:27 UTC 2017


Author: carnil
Date: 2017-10-30 20:34:27 +0000 (Mon, 30 Oct 2017)
New Revision: 57144

Modified:
   data/CVE/list
Log:
Update information for CVE-2017-12171/apache2

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-30 20:15:16 UTC (rev 57143)
+++ data/CVE/list	2017-10-30 20:34:27 UTC (rev 57144)
@@ -11510,8 +11510,7 @@
 	RESERVED
 CVE-2017-12171 [httpd: # character matches all IPs]
 	RESERVED
-	- apache2 <undetermined>
-	TODO: check, probably RH-specific, asked RH Secalert for more information
+	- apache2 <not-affected> (Introduced by Red Hat RHEL 6.9 specific non-security patch)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1493056
 CVE-2017-12170 (Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was ...)
 	- pure-ftpd <not-affected> (Fedora specific packaging error)




More information about the Secure-testing-commits mailing list