[Git][security-tracker-team/security-tracker][master] Add CVE-2018-8034/tomcat*

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eae4629a by Salvatore Bonaccorso at 2018-07-24T08:24:14+02:00
Add CVE-2018-8034/tomcat*

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16381,8 +16381,18 @@ CVE-2018-8036 (In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefu
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/29/2
 CVE-2018-8035
 	RESERVED
-CVE-2018-8034
+CVE-2018-8034 [host name verification missing in WebSocket client]
 	RESERVED
+	- tomcat9 <itp> (bug #802312)
+	- tomcat8 8.5.32-1
+	- tomcat8.0 <unfixed> (unimportant)
+	NOTE: tomcat8.0 builds only tomcat8.0-user and libtomcat8.0-java
+	- tomcat7 7.0.72-3
+	NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
+	NOTE: https://svn.apache.org/r1833757 (9.0.x)
+	NOTE: https://svn.apache.org/r1833758 (8.5.x)
+	NOTE: https://svn.apache.org/r1833759 (8.0.x)
+	NOTE: https://svn.apache.org/r1833760 (7.0.x)
 CVE-2018-8033
 	RESERVED
 CVE-2018-8032



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eae4629ac0b5c4308ae951ef3d5989f63dcef4f6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eae4629ac0b5c4308ae951ef3d5989f63dcef4f6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180724/9cc28a76/attachment.html>