stef-guest at alioth.debian.org
2007-Jul-11 19:36 UTC
[Secure-testing-commits] r6136 - data/CVE
Author: stef-guest
Date: 2007-07-11 19:36:31 +0000 (Wed, 11 Jul 2007)
New Revision: 6136
Modified:
data/CVE/list
Log:
CVE-2006-5752 affects apache
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-07-11 19:19:55 UTC (rev 6135)
+++ data/CVE/list 2007-07-11 19:36:31 UTC (rev 6136)
@@ -860,7 +860,7 @@
[sarge] - apache <unfixed> (low)
- apache2 <unfixed> (low)
[etch] - apache2 <unfixed> (low)
- [sarge] - apache2 <not-affected> (affects only 1.3.xnd 2.2.x)
+ [sarge] - apache2 <not-affected> (affects only 1.3.x and 2.2.x)
NOTE: Apache 2.0 likely not affected, see
NOTE:
http://mail-archives.apache.org/mod_mbox/httpd-dev/200706.mbox/<20070622162353.GA15396%40redhat.com>
CVE-2007-3303 (Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module,
allows ...)
@@ -11700,6 +11700,8 @@
- linux-2.6 <unfixed>
CVE-2006-5752 (Cross-site scripting (XSS) vulnerability in mod_status.c in the
...)
- apache2 <unfixed> (low)
+ - apache <unfixed> (low)
+ NOTE: 1.3 and 2.0 are affected, too
CVE-2006-5751 (Integer overflow in the get_fdb_entries function in ...)
{DSA-1233}
- linux-2.6 2.6.18-8 (medium)