[Git][security-tracker-team/security-tracker][master] CVE-2019-0221/tomcat: affects debug channel
Hugo Lefeuvre
hle at debian.org
Tue May 21 07:25:50 BST 2019
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c0c785dc by Hugo Lefeuvre at 2019-05-21T06:25:38Z
CVE-2019-0221/tomcat: affects debug channel
Add link to Apache advisory. CVE seems to be rather low priority.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32612,6 +32612,8 @@ CVE-2019-0221 [XSS in SSI printenv]
- tomcat9 <unfixed>
- tomcat8 <removed>
- tomcat7 <removed>
+ NOTE: affects debug channel, unlikely to be present in production websites:
+ NOTE: https://mail-archives.apache.org/mod_mbox/www-announce/201905.mbox/%3Cb1905aa6-f340-8d0b-58c4-8ac3ebcbfa54@apache.org%3E
NOTE: https://github.com/apache/tomcat/commit/15fcd16 (9.0.19)
NOTE: https://github.com/apache/tomcat/commit/4fcdf70 (8.5.39)
NOTE: https://github.com/apache/tomcat/commit/44ec74c (7.0.93)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c0c785dc5fbdd37298e24bb4dba4ab54d4408c24
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c0c785dc5fbdd37298e24bb4dba4ab54d4408c24
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190521/8f739fbe/attachment.html>
More information about the debian-security-tracker-commits
mailing list