Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fca79915 by Moritz Muehlenhoff at 2019-01-29T23:36:59Z
apache2 fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18663,7 +18663,7 @@ CVE-2019-0191
RESERVED
CVE-2019-0190 [mod_ssl 2.4.37 remote DoS when used with OpenSSL 1.1.1]
RESERVED
- - apache2 <unfixed> (bug #920220)
+ - apache2 2.4.38-1 (bug #920220)
[stretch] - apache2 <not-affected> (Only affects 2.4.37)
[jessie] - apache2 <not-affected> (Only affects 2.4.37)
NOTE: https://www.openwall.com/lists/oss-security/2019/01/22/4
@@ -24140,7 +24140,7 @@ CVE-2018-17200
RESERVED
CVE-2018-17199 [mod_session_cookie does not respect expiry time]
RESERVED
- - apache2 <unfixed> (bug #920303)
+ - apache2 2.4.38-1 (bug #920303)
NOTE: https://www.openwall.com/lists/oss-security/2019/01/22/3
NOTE: 2.4.x http://svn.apache.org/r1851409
NOTE: 2.5.x http://svn.apache.org/r1850947
@@ -24170,7 +24170,7 @@ CVE-2018-17190 (In all versions of Apache Spark, its
standalone resource manager
NOT-FOR-US: Apache Spark
CVE-2018-17189 [mod_http2, DoS via slow, unneeded request bodies]
RESERVED
- - apache2 <unfixed> (bug #920302)
+ - apache2 2.4.38-1 (bug #920302)
[jessie] - apache2 <not-affected> (Vulnerable code not present)
NOTE: HTTP/2 support introduced in 2.4.17
NOTE: https://www.openwall.com/lists/oss-security/2019/01/22/2
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fca79915722539ddbd8dfff1f3055f849f7e055b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fca79915722539ddbd8dfff1f3055f849f7e055b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
