[Git][security-tracker-team/security-tracker][master] CVE-2017-7674,CVE-2018-8014,tomcat7: Will be fixed via Jessie update

[Markus Koschany]

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1d4b25ff by Markus Koschany at 2018-06-27T21:45:10+02:00
CVE-2017-7674,CVE-2018-8014,tomcat7: Will be fixed via Jessie update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -12239,7 +12239,6 @@ CVE-2018-8014 (The defaults settings for the CORS filter provided in Apache Tomc
 	- tomcat9 <itp> (bug #802312)
 	- tomcat8 <unfixed> (bug #898935)
 	[stretch] - tomcat8 <no-dsa> (Minor issue; user expected to configure filters appropriately)
-	[jessie] - tomcat8 <no-dsa> (Minor issue; user expected to configure filters appropriately)
 	- tomcat8.0 <unfixed> (unimportant)
 	NOTE: tomcat8.0 builds only tomcat8.0-user and libtomcat8.0-java
 	- tomcat7 7.0.72-3
@@ -64262,7 +64261,6 @@ CVE-2017-7674 (The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 
 	- tomcat9 <itp> (bug #802312)
 	- tomcat8 8.5.16-1
 	- tomcat7 7.0.72-3
-	[jessie] - tomcat7 <postponed> (Can be fixed along in a future update)
 	[wheezy] - tomcat7 <not-affected> (Vulnerable code not present)
 	NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
 	NOTE: Fixed by: http://svn.apache.org/r1795814 (8.5.x)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1d4b25ffa66b274ba4314ccc979b0513e1ee817a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1d4b25ffa66b274ba4314ccc979b0513e1ee817a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180627/645f0150/attachment.html>