Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ec3d1f08 by Salvatore Bonaccorso at 2019-12-21T13:40:56Z
Add Debian bug reference for CVE-2019-17571/apache-log4j1.2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13449,7 +13449,7 @@ CVE-2019-17573
CVE-2019-17572
RESERVED
CVE-2019-17571 (Included in Log4j 1.2 is a SocketServer class that is
vulnerable to de ...)
- - apache-log4j1.2 <unfixed>
+ - apache-log4j1.2 <unfixed> (bug #947124)
NOTE:
https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E
NOTE: CVE-2019-17571 correspond to CVE-2017-5645 for apache-log4j2.
1.2.x branch
NOTE: is end-of-life upstream and does not recieve a fix for this
issue. Users
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ec3d1f082583c828a6634cdfa9636eabf94cafd2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ec3d1f082583c828a6634cdfa9636eabf94cafd2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
