Update information for old CVE-2008-0455/apache2

It appears from [1] that CVE-2012-2687 was as well known under (duplicate) CVE-2008-0455. CVE-2012-2687 was fixed witn the 2.2.22-8 upload, so sync the two entries with the fixed version.
author: Salvatore Bonaccorso <carnil@debian.org> 2020-07-23 11:18:10 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-07-23 11:18:10 +0200
commit: cc1d362f2c8c2bb79d5ec94d9bc813004f6733e4 (patch)
tree: 02b2bed97ce1842ed47018f6f4161e5e3d2328c2 /data/CVE/list.2008
parent: cb08398d68f68699f9542d85c493a11330addb16 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2008 b/data/CVE/list.2008
index 62b48f5c87..18fefc128a 100644
--- a/data/CVE/list.2008
+++ b/data/CVE/list.2008
@@ -16124,9 +16124,10 @@ CVE-2008-0456 (CRLF injection vulnerability in the mod_negotiation module in the
 	NOTE: but not with arbitrary contents.
 CVE-2008-0455 (Cross-site scripting (XSS) vulnerability in the mod_negotiation module ...)
 	- apache <removed> (unimportant)
-	- apache2 <unfixed> (unimportant)
+	- apache2 2.2.22-8 (unimportant)
 	NOTE: This is only relevant if an attacker can upload files with arbitrary names
 	NOTE: but not with arbitrary contents.
+	NOTE: https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2012-2687
 CVE-2008-0454 (Cross-zone scripting vulnerability in the Internet Explorer web contro ...)
 	NOT-FOR-US: Skype
 CVE-2008-0453 (SQL injection vulnerability in list.php in Easysitenetwork Recipe allo ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-07-23 11:18:10 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-07-23 11:18:10 +0200
commit	cc1d362f2c8c2bb79d5ec94d9bc813004f6733e4 (patch)
tree	02b2bed97ce1842ed47018f6f4161e5e3d2328c2 /data/CVE/list.2008
parent	cb08398d68f68699f9542d85c493a11330addb16 (diff)