apache-log4j1.2 via unstable

Salvatore Bonaccorso Sat, 11 Jan 2020 15:20:28 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
890d1c22 by Salvatore Bonaccorso at 2020-01-12T00:19:30+01:00
Track fixed version for CVE-2019-17571/apache-log4j1.2 via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20593,7 +20593,7 @@ CVE-2019-17573
 CVE-2019-17572
        RESERVED
 CVE-2019-17571 (Included in Log4j 1.2 is a SocketServer class that is 
vulnerable to de ...)
-       - apache-log4j1.2 <unfixed> (bug #947124)
+       - apache-log4j1.2 1.2.17-9 (bug #947124)
        NOTE: 
https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E
        NOTE: CVE-2019-17571 correspond to CVE-2017-5645 for apache-log4j2. 
1.2.x branch
        NOTE: is end-of-life upstream and does not recieve a fix for this 
issue. Users



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/890d1c22ab77b3723ab98b65c1b786102f73a491

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/890d1c22ab77b3723ab98b65c1b786102f73a491
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2019-17571/apache-log4j1.2 via unstable

Reply via email to