[Git][security-tracker-team/security-tracker][master] Track fixes for trafficserver via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jul 15 21:49:30 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eb832420 by Salvatore Bonaccorso at 2021-07-15T22:49:06+02:00
Track fixes for trafficserver via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2865,7 +2865,7 @@ CVE-2021-3615
CVE-2021-3614
RESERVED
CVE-2021-35474 (Stack-based Buffer Overflow vulnerability in cachekey plugin of Apache ...)
- - trafficserver <unfixed> (bug #990303)
+ - trafficserver 8.1.1+ds-1.1 (bug #990303)
NOTE: https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cannounce.trafficserver.apache.org%3E
NOTE: https://github.com/apache/trafficserver/pull/7945 (8.1.x)
NOTE: https://github.com/apache/trafficserver/commit/5a9339d7bc65e1c2d8d2a0fc80bb051daf3cdb0b (master)
@@ -9480,19 +9480,19 @@ CVE-2021-32569
CVE-2021-32568
RESERVED
CVE-2021-32567 (Improper Input Validation vulnerability in HTTP/2 of Apache Traffic Se ...)
- - trafficserver <unfixed> (bug #990303)
+ - trafficserver 8.1.1+ds-1.1 (bug #990303)
NOTE: https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cannounce.trafficserver.apache.org%3E
NOTE: https://github.com/apache/trafficserver/pull/7945 (8.1.x)
NOTE: https://github.com/apache/trafficserver/commit/034965e0fd0def114658f0048d953d1c16a95bed (master)
NOTE: https://github.com/apache/trafficserver/commit/b82a3d192f995fb9d78e1c44d51d9acca4783277 (8.1.x)
CVE-2021-32566 (Improper Input Validation vulnerability in HTTP/2 of Apache Traffic Se ...)
- - trafficserver <unfixed> (bug #990303)
+ - trafficserver 8.1.1+ds-1.1 (bug #990303)
NOTE: https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cannounce.trafficserver.apache.org%3E
NOTE: https://github.com/apache/trafficserver/pull/7945 (8.1.x)
NOTE: https://github.com/apache/trafficserver/commit/034965e0fd0def114658f0048d953d1c16a95bed (master)
NOTE: https://github.com/apache/trafficserver/commit/b82a3d192f995fb9d78e1c44d51d9acca4783277 (8.1.x)
CVE-2021-32565 (Invalid values in the Content-Length header sent to Apache Traffic Ser ...)
- - trafficserver <unfixed> (bug #990303)
+ - trafficserver 8.1.1+ds-1.1 (bug #990303)
NOTE: https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cannounce.trafficserver.apache.org%3E
NOTE: https://github.com/apache/trafficserver/pull/7945 (8.1.x)
NOTE: https://github.com/apache/trafficserver/commit/668d0f8668fec1cd350b0ceba3f7f8e4020ae3ca (master)
@@ -21816,7 +21816,7 @@ CVE-2021-27579 (Snow Inventory Agent through 6.7.0 on Windows uses CPUID to repo
CVE-2021-27578
RESERVED
CVE-2021-27577 (Incorrect handling of url fragment vulnerability of Apache Traffic Ser ...)
- - trafficserver <unfixed> (bug #990303)
+ - trafficserver 8.1.1+ds-1.1 (bug #990303)
NOTE: https://lists.apache.org/thread.html/ra1a41ff92a70d25bf576d7da2590575e8ff430393a3f4a0c34de4277%40%3Cannounce.trafficserver.apache.org%3E
NOTE: https://github.com/apache/trafficserver/pull/7945 (8.1.x)
NOTE: https://github.com/apache/trafficserver/commit/2b13eb33794574e62249997b4ba654d943a10f2d (master)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb8324208d2bc614cfd4bfcc2738cf28449ebaaf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb8324208d2bc614cfd4bfcc2738cf28449ebaaf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210715/e028990e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list