Author: nion
Date: 2008-05-18 16:01:32 +0000 (Sun, 18 May 2008)
New Revision: 8836
Modified:
data/CVE/list
Log:
cveified apache2
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-05-18 14:22:48 UTC (rev 8835)
+++ data/CVE/list 2008-05-18 16:01:32 UTC (rev 8836)
@@ -4,11 +4,6 @@
- uudeview <unfixed> (bug #480972)
- libconvert-uulib-perl <not-affected> (Code patched by libconver-uulib
upstream to use mkstemp)
NOTE: See CVE-2004-2265, where the problem occured as well
-CVE-2008-XXXX [apache2 mod_ssl DoS (memory leak)]
- - apache2 2.2.8-4
- [etch] - apache2 <not-affected> (only a problem with openssl 0.9.8f or
later)
- NOTE: https://issues.apache.org/bugzilla/show_bug.cgi?id=44975
- NOTE: requested CVE id
CVE-2008-2302 [Cross-site scripting (XSS) by missing escaping]
- python-django <unfixed> (bug #481164; low)
CVE-2008-2162 (Cross-site scripting (XSS) vulnerability in SonicWall Email
Security ...)
@@ -1089,8 +1084,11 @@
{DSA-1551-1}
- python2.4 2.4.5-2
- python2.5 2.5.2-3
-CVE-2008-1678
+CVE-2008-1678 [apache2 mod_ssl DoS (memory leak)]
RESERVED
+ - apache2 2.2.8-4
+ [etch] - apache2 <not-affected> (only a problem with openssl 0.9.8f or
later)
+ NOTE: https://issues.apache.org/bugzilla/show_bug.cgi?id=44975
CVE-2008-1677 (Buffer overflow in the regular expression handler in Red Hat
Directory ...)
NOT-FOR-US: Red Hat Directory Server
CVE-2008-1676