[Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-8011 for apache2 in [jessie] as <not-affected>.
Mike Gabriel
sunweaver at debian.org
Fri Jul 20 21:51:15 BST 2018
Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4f31dbfd by Mike Gabriel at 2018-07-20T22:51:02+02:00
data/CVE/list: Tag CVE-2018-8011 for apache2 in [jessie] as <not-affected>.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16188,6 +16188,7 @@ CVE-2018-8012 (No authentication/authorization is enforced when a server attempt
CVE-2018-8011 (By specially crafting HTTP requests, the mod_md challenge handler ...)
- apache2 <unfixed> (bug #904107)
[stretch] - apache2 <not-affected> (Vulnerable code not present; mod_md module)
+ [jessie] - apache2 <not-affected> (Vulnerable code not present; mod_md module)
NOTE: http://www.openwall.com/lists/oss-security/2018/07/18/2
NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-8011
TODO: check, should affect only the specific 2.4.33 version (unless issue backported)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f31dbfdf947ca786d439067a406979e5d1996e0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f31dbfdf947ca786d439067a406979e5d1996e0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180720/e5c1b16d/attachment.html>
More information about the debian-security-tracker-commits
mailing list