diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2021-01-19 17:27:09 +0100 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2021-01-19 17:27:09 +0100 |
| commit | d01ace851cdbcf49b8e651940e26142e526a1504 (patch) | |
| tree | c0e5e9e9080c968d26ba6271da5d578a218237b5 | |
| parent | 09a0566173b47cbff88ff6f6b3fee5560532315e (diff) | |
apache-log4j2 fixed in sid
| -rw-r--r-- | data/CVE/list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 0856cd9d78..6b84d88217 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -66769,7 +66769,7 @@ CVE-2020-9489 (A carefully crafted or corrupt file may trigger a System.exit in [jessie] - tika <ignored> (the fix is too invasive to backport) NOTE: https://www.openwall.com/lists/oss-security/2020/04/24/1 CVE-2020-9488 (Improper validation of certificate with host mismatch in Apache Log4j ...) - - apache-log4j2 <unfixed> (bug #959450) + - apache-log4j2 2.13.3-1 (bug #959450) [buster] - apache-log4j2 <no-dsa> (Minor issue) [stretch] - apache-log4j2 <no-dsa> (Minor issue; set mail.smtp.ssl.checkserveridentity to true to enable hostname verification) [jessie] - apache-log4j2 <no-dsa> (Minor issue; set mail.smtp.ssl.checkserveridentity to true to enable hostname verification) |