diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-23 11:18:10 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-23 11:18:10 +0200 |
commit | 57c3fb7cbb1e8d29b454f8f1cc2b0bfddf1f8265 (patch) | |
tree | ecd48b18707d4fb2a4382904d979c7ea1a5533ae /data/CVE/2008.list | |
parent | 054460ebbfa86394ce032bcd6ae99dd6dfc8fd90 (diff) |
Update information for old CVE-2008-0455/apache2
It appears from [1] that CVE-2012-2687 was as well known under
(duplicate) CVE-2008-0455. CVE-2012-2687 was fixed witn the 2.2.22-8
upload, so sync the two entries with the fixed version.
Diffstat (limited to 'data/CVE/2008.list')
-rw-r--r-- | data/CVE/2008.list | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2008.list b/data/CVE/2008.list index 62b48f5c87..18fefc128a 100644 --- a/data/CVE/2008.list +++ b/data/CVE/2008.list @@ -16124,9 +16124,10 @@ CVE-2008-0456 (CRLF injection vulnerability in the mod_negotiation module in the NOTE: but not with arbitrary contents. CVE-2008-0455 (Cross-site scripting (XSS) vulnerability in the mod_negotiation module ...) - apache <removed> (unimportant) - - apache2 <unfixed> (unimportant) + - apache2 2.2.22-8 (unimportant) NOTE: This is only relevant if an attacker can upload files with arbitrary names NOTE: but not with arbitrary contents. + NOTE: https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2012-2687 CVE-2008-0454 (Cross-zone scripting vulnerability in the Internet Explorer web contro ...) NOT-FOR-US: Skype CVE-2008-0453 (SQL injection vulnerability in list.php in Easysitenetwork Recipe allo ...) |