[Git][security-tracker-team/security-tracker][master] Postpone decision on possible apache2 DSA for VE-2021-33193
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Aug 15 21:53:53 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
20b33b24 by Salvatore Bonaccorso at 2021-08-15T22:53:15+02:00
Postpone decision on possible apache2 DSA for VE-2021-33193
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12600,6 +12600,7 @@ CVE-2021-33193 [Apache mod_proxy HTTP2 request line injection]
RESERVED
- apache2 2.4.48-4
[bullseye] - apache2 2.4.48-3.1+deb11u1
+ [buster] - apache2 <postponed> (Revisit when a suitable backport is available for 2.4.38)
NOTE: https://portswigger.net/research/http2
NOTE: https://github.com/apache/httpd/commit/ecebcc035ccd8d0e2984fe41420d9e944f456b3c
CVE-2021-33192 (A vulnerability in the HTML pages of Apache Jena Fuseki allows an atta ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20b33b24759cc5b93fdaffb70e4ad7f636d32725
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/20b33b24759cc5b93fdaffb70e4ad7f636d32725
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210815/664d3e4a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list