stef-guest at alioth.debian.org
2007-May-26 11:34 UTC
[Secure-testing-commits] r5938 - data/CVE
Author: stef-guest
Date: 2007-05-26 11:34:34 +0000 (Sat, 26 May 2007)
New Revision: 5938
Modified:
data/CVE/list
Log:
CVE-2007-0774, CVE-2007-1860: mod_jk
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-05-26 11:13:36 UTC (rev 5937)
+++ data/CVE/list 2007-05-26 11:34:34 UTC (rev 5938)
@@ -2064,8 +2064,9 @@
CVE-2007-1861 (The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux
Kernel ...)
{DSA-1289-1}
- linux-2.6 2.6.21-1
-CVE-2007-1860
+CVE-2007-1860 [Apache Tomcat JK Connector Information disclosure]
RESERVED
+ - libapache-mod-jk <unfixed> (bug #425836)
CVE-2007-1859 (XScreenSaver 4.10, when using a remote directory service for
...)
- xscreensaver <unfixed> (low)
CVE-2007-1858 (The default SSL cipher configuration in Apache Tomcat 4.1.28
through ...)
@@ -5061,7 +5062,10 @@
[sarge] - mozilla <unfixed> (low)
NOTE: Only one of the crashes can be triggered in Sarge, 326864
CVE-2007-0774 (Stack-based buffer overflow in the map_uri_to_worker function
...)
- - tomcat5.5 <unfixed> (medium)
+ - libapache-mod-jk 1:1.2.21-1 (medium)
+ [sarge] - libapache-mod-jk <not-affected>
+ [etch] - libapache-mod-jk <not-affected>
+ NOTE: affects only 1.2.19 and 1.2.20
CVE-2007-0773
RESERVED
CVE-2007-0772 (The Linux kernel 2.6.13 and other versions before 2.6.20.1
allows ...)