Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
c030c344 by Salvatore Bonaccorso at 2018-02-23T06:39:23+01:00
Add CVE-2018-1304/tomcat

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16022,8 +16022,18 @@ CVE-2018-1305 [Security constraint annotations applied 
too late]
        NOTE: https://svn.apache.org/r1824359 (8.0.x)
        NOTE: https://svn.apache.org/r1823322 (7.0.x)
        NOTE: https://svn.apache.org/r1824360 (7.0.x)
-CVE-2018-1304
+CVE-2018-1304 [Security constraints mapped to context root are ignored]
        RESERVED
+       - tomcat9 <itp> (bug #802312)
+       - tomcat8 8.5.28-1
+       - tomcat8.0 <unfixed> (unimportant)
+       NOTE: tomcat8.0 builds only tomcat8.0-user and libtomcat8.0-java
+       - tomcat7 7.0.72-3
+       NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
+       NOTE: https://svn.apache.org/r1823307 (8.5.x)
+       NOTE: https://svn.apache.org/r1823308 (8.0.x)
+       NOTE: https://svn.apache.org/r1823309 (7.0.x)
+       NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=62067
 CVE-2018-1303
        RESERVED
 CVE-2018-1302



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c030c344a88afa29713009ba6e17a14098400927

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c030c344a88afa29713009ba6e17a14098400927
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to