[Git][security-tracker-team/security-tracker][master] CVE-2024-40725/apache2

[Bastien Roucariès (@rouca)]

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fd93ccea by Bastien Roucariès at 2024-07-18T19:02:13+00:00
CVE-2024-40725/apache2

Add a note about commit fixing the problem

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4545,6 +4545,8 @@ CVE-2024-40725
 	[bullseye] - apache2 <no-dsa> (Minor issue; can be fixed in point release)
 	NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2024-40725
 	NOTE: Introduced due to fix for CVE-2024-39884.
+	NOTE: Fixed by https://github.com/apache/httpd/commit/a7d24b4ea9a6ea35878fd33075365328caafcf91
+	NOTE: (or svn https://svn.apache.org/viewvc?view=revision&revision=1919249)
 CVE-2024-39884 (A regression in the core of Apache HTTP Server 2.4.60 ignores some use ...)
 	- apache2 2.4.61-1
 	[bookworm] - apache2 <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd93ccea66b218d133bf1abbf9fa0d96df30ad9b

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd93ccea66b218d133bf1abbf9fa0d96df30ad9b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240718/f505f316/attachment.htm>