Summary: | www-apache/mod_jk < 1.2.23 URL crafted prefix issue (CVE-2007-1860) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sune Kloppenborg Jeppesen (RETIRED) <jaervosz> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | apache-bugs, java, wltjr |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1860 | ||
Whiteboard: | B4 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Sune Kloppenborg Jeppesen (RETIRED)
2007-07-22 12:26:16 UTC
version 1.2.23 is already in the tree but unstable, are we ready to call arches for stabilisation? William, please advise. Yes we should be good to go for stabilization. Sorry I had not requested it sooner, kinda been tied up with other things. CC'ing archs now for stabilization of 1.2.23. x86 stable amd64 stable ppc stable, ready for glsa-voting. on a side-note: debian and red hat released advisories. I vote YES. voting yes too, let's have a GLSA on this one. GLSA 200708-15, thanks everybody |