[Git][security-tracker-team/security-tracker][master] Associate CVE-2018-1337 with apache-directory-api
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jun 1 08:12:09 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3da949f7 by Salvatore Bonaccorso at 2026-06-01T09:11:41+02:00
Associate CVE-2018-1337 with apache-directory-api
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -711512,7 +711512,8 @@ CVE-2018-1338 (A carefully crafted (or fuzzed) file can trigger an infinite loop
[jessie] - tika <not-affected> (BGP parser introduced in 1.7)
NOTE: https://www.openwall.com/lists/oss-security/2018/04/25/6
CVE-2018-1337 (In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Fi ...)
- NOT-FOR-US: Apache LDAP API
+ - apache-directory-api 2.1.2-1
+ NOTE: https://lists.apache.org/thread/lrfz3057jbz6ssyg7scmcrpx46qopcm5
CVE-2018-1336 (An improper handing of overflow in the UTF-8 decoder with supplementar ...)
{DSA-4281-1 DLA-1491-1}
- tomcat9 <not-affected> (Fixed before initial upload to Debian)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3da949f7284fbc3b4cb725770cda493ac36ecaf0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3da949f7284fbc3b4cb725770cda493ac36ecaf0
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260601/755f5d26/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list