[Git][security-tracker-team/security-tracker][master] Add CVE-2021-44224/apache2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Dec 20 13:32:51 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9b8cfceb by Salvatore Bonaccorso at 2021-12-20T14:32:19+01:00
Add CVE-2021-44224/apache2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3226,8 +3226,10 @@ CVE-2021-44225 (In Keepalived through 2.2.4, the D-Bus policy does not sufficien
[stretch] - keepalived <no-dsa> (Minor issue)
NOTE: https://github.com/acassen/keepalived/pull/2063
NOTE: https://github.com/acassen/keepalived/commit/7977fec0be89ae6fe87405b3f8da2f0b5e415e3d
-CVE-2021-44224
+CVE-2021-44224 [Possible NULL dereference or SSRF in forward proxy configurations]
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-44224
CVE-2021-44223 (WordPress before 5.8 lacks support for the Update URI plugin header. T ...)
- wordpress 5.8.1+dfsg1-1
[bullseye] - wordpress <no-dsa> (Minor issue; workarounds/mitigation for older versions can be implemented)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b8cfceb7d05f6e63c9926023ee3440175282740
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b8cfceb7d05f6e63c9926023ee3440175282740
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211220/f5f94cf8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list