[Git][security-tracker-team/security-tracker][master] LTS: annotate apache2 CVEs as not affecting wheezy

Roberto C. Sánchez roberto at debian.org
Sat Apr 28 13:21:11 BST 2018 

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b4d913cc by Roberto C. Sánchez at 2018-04-28T08:18:24-04:00
LTS: annotate apache2 CVEs as not affecting wheezy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24775,6 +24775,7 @@ CVE-2018-1304 (The URL pattern of "" (the empty string) which exactly 
 CVE-2018-1303 (A specially crafted HTTP request header could have crashed the Apache ...)
 	{DSA-4164-1}
 	- apache2 2.4.33-1
+	[wheezy] - apache2 <not-affected> (Vulnerable code not present)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/03/24/3
 CVE-2018-1302 (When an HTTP/2 stream was destroyed after being handled, the Apache ...)
 	- apache2 2.4.33-1
@@ -24840,6 +24841,7 @@ CVE-2018-1284 (In Apache Hive 0.6.0 to 2.3.2, malicious user might use any xpath
 CVE-2018-1283 (In Apache httpd 2.4.0 to 2.4.29, when mod_session is configured to ...)
 	{DSA-4164-1}
 	- apache2 2.4.33-1
+	[wheezy] - apache2 <not-affected> (Vulnerable code not present)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/03/24/4
 CVE-2018-1282 (This vulnerability in Apache Hive JDBC driver 0.7.1 to 2.3.2 allows ...)
 	NOT-FOR-US: Apache Hive
@@ -32795,6 +32797,7 @@ CVE-2017-15716
 CVE-2017-15715 (In Apache httpd 2.4.0 to 2.4.29, the expression specified in ...)
 	{DSA-4164-1}
 	- apache2 2.4.33-1
+	[wheezy] - apache2 <not-affected> (Vulnerable code not present)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/03/24/6
 CVE-2017-15714 (The BIRT plugin in Apache OFBiz 16.11.01 to 16.11.03 does not escape ...)
 	NOT-FOR-US: BIRT plugin in Apache OFBiz



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b4d913ccfd03966438345d297b29e367d9f307f5

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b4d913ccfd03966438345d297b29e367d9f307f5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180428/2db0fd21/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list