https://issues.apache.org/bugzilla/show_bug.cgi?id=54594
Bug ID: 54594
Summary: Apache httpd 2.2 vulnerabilities list - date typo
Product: Apache httpd-2
Version: 2.2-HEAD
Hardware: PC
Status: NEW
Severity: normal
Priority: P2
Component: Documentation
Assignee: docs@httpd.apache.org
Reporter: du...@sogetthis.com
Classification: Unclassified
The date is incorrect under one of the mentioned vulnerabilities under Fixed in
Apache httpd 2.2.12.
Page: http://httpd.apache.org/security/vulnerabilities_22.html
See Update Released below, should be 27th July?
moderate: APR-util off-by-one overflowCVE-2009-1956
An off-by-one overflow flaw was found in the way the bundled copy of the
APR-util library processed a variable list of arguments. An attacker could
provide a specially-crafted string as input for the formatted output conversion
routine, which could, on big-endian platforms, potentially lead to the
disclosure of sensitive information or a denial of service.
Issue public: 24th April 2009
Update Released: 72th 2009
Affects: 2.2.11, 2.2.10, 2.2.9, 2.2.8, 2.2.6, 2.2.5, 2.2.4, 2.2.3, 2.2.2,
2.2.0
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: docs-unsubscr...@httpd.apache.org
For additional commands, e-mail: docs-h...@httpd.apache.org
