[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-12613 fix in recent upload
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Mon Jan 24 22:33:20 GMT 2022
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
127b005d by Thorsten Alteholz at 2022-01-24T23:32:23+01:00
CVE-2017-12613 fix in recent upload
- - - - -
4dbc45dc by Thorsten Alteholz at 2022-01-24T23:33:03+01:00
Reserve DLA-2897-1 for apr
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -283108,7 +283108,6 @@ CVE-2017-12614 (It was noticed an XSS in certain 404 pages that could be exploit
CVE-2017-12613 (When apr_time_exp*() or apr_os_exp_time*() functions are invoked with ...)
{DLA-1162-1}
- apr 1.6.3-1 (low; bug #879708)
- [stretch] - apr <no-dsa> (Minor issue)
[jessie] - apr <no-dsa> (Minor issue)
NOTE: mail-archives.apache.org/mod_mbox/apr-dev/201710.mbox/%3CCACsi252POs4toeJJciwg09_eu2cO3XFg%3DUqsPjXsfjDoeC3-UQ%40mail.gmail.com%3E
NOTE: Fixed by: https://github.com/apache/apr/commit/ad958385a4180d7a83d90589689fcd36e3bbc57a
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[24 Jan 2022] DLA-2897-1 apr - security update
+ {CVE-2017-12613}
+ [stretch] - apr 1.5.2-5+deb9u1
[24 Jan 2022] DLA-2896-1 ipython - security update
{CVE-2022-21699}
[stretch] - ipython 5.1.0-3+deb9u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4bb2decd8554e3cbff6b75790d69fbacd1fcd0bb...4dbc45dcd5dca0ff033bd05af7f03d36972bd5f7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4bb2decd8554e3cbff6b75790d69fbacd1fcd0bb...4dbc45dcd5dca0ff033bd05af7f03d36972bd5f7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220124/b0404c34/attachment.htm>
More information about the debian-security-tracker-commits
mailing list