[Git][security-tracker-team/security-tracker][master] CVE-2018-11469/haproxy fixed in unstable (#8900084)
Salvatore Bonaccorso
carnil at debian.org
Sat May 26 15:55:22 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f441728d by Salvatore Bonaccorso at 2018-05-26T16:54:48+02:00
CVE-2018-11469/haproxy fixed in unstable (#8900084)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -25,7 +25,7 @@ CVE-2018-11471 (Cockpit 0.5.5 has XSS via a collection, form, or region. ...)
CVE-2018-11470 (iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' ...)
NOT-FOR-US: iScripts eSwap
CVE-2018-11469 (Incorrect caching of responses to requests including an Authorization ...)
- - haproxy <unfixed> (bug #900084)
+ - haproxy 1.8.9-2 (bug #900084)
[stretch] - haproxy <not-affected> (Issue introduced in 1.8.0)
[jessie] - haproxy <not-affected> (Issue introduced in 1.8.0)
NOTE: https://git.haproxy.org/?p=haproxy-1.8.git;a=commit;h=17514045e5d934dede62116216c1b016fe23dd06
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f441728d2bc4f3623d2144cb9df503a2bf694f16
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f441728d2bc4f3623d2144cb9df503a2bf694f16
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180526/83bfe247/attachment.html>
More information about the debian-security-tracker-commits
mailing list