Return-Path:
X-Original-To: apmail-httpd-cvs-archive@www.apache.org
Delivered-To: apmail-httpd-cvs-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
by minotaur.apache.org (Postfix) with SMTP id B9DC896E6
for ;
Fri, 15 Jun 2012 08:43:23 +0000 (UTC)
Received: (qmail 65892 invoked by uid 500); 15 Jun 2012 08:43:22 -0000
Delivered-To: apmail-httpd-cvs-archive@httpd.apache.org
Received: (qmail 65795 invoked by uid 500); 15 Jun 2012 08:43:22 -0000
Mailing-List: contact cvs-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@httpd.apache.org
list-help:
list-unsubscribe:
List-Post:
List-Id:
Delivered-To: mailing list cvs@httpd.apache.org
Received: (qmail 65775 invoked by uid 99); 15 Jun 2012 08:43:22 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 15 Jun 2012 08:43:22 +0000
X-ASF-Spam-Status: No, hits=-2000.0 required=5.0
tests=ALL_TRUSTED
X-Spam-Check-By: apache.org
Received: from [140.211.11.4] (HELO eris.apache.org) (140.211.11.4)
by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 15 Jun 2012 08:43:19 +0000
Received: from eris.apache.org (localhost [127.0.0.1])
by eris.apache.org (Postfix) with ESMTP id CA06423889E1
for ; Fri, 15 Jun 2012 08:42:58 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Subject: svn commit: r821848 - in /websites/staging/httpd/trunk/content: ./
security/vulnerabilities_22.html
Date: Fri, 15 Jun 2012 08:42:58 -0000
To: cvs@httpd.apache.org
From: buildbot@apache.org
X-Mailer: svnmailer-1.0.8-patched
Message-Id: <20120615084258.CA06423889E1@eris.apache.org>
Author: buildbot
Date: Fri Jun 15 08:42:58 2012
New Revision: 821848
Log:
Staging update by buildbot for httpd
Modified:
websites/staging/httpd/trunk/content/ (props changed)
websites/staging/httpd/trunk/content/security/vulnerabilities_22.html
Propchange: websites/staging/httpd/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Fri Jun 15 08:42:58 2012
@@ -1 +1 @@
-1350532
+1350534
Modified: websites/staging/httpd/trunk/content/security/vulnerabilities_22.html
==============================================================================
--- websites/staging/httpd/trunk/content/security/vulnerabilities_22.html (original)
+++ websites/staging/httpd/trunk/content/security/vulnerabilities_22.html Fri Jun 15 08:42:58 2012
@@ -88,9 +88,9 @@ populated by Apache Week. Please send co
vulnerabilities to the Security Team.
Fixed in Apache httpd 2.2.22
low: mod_setenvif.htaccess privilege escalation CVE-2011-3607
-An integer overflow flaw was found which, when the mod_setenvif module is
-enabled, could allow local users to gain privileges via a.htaccess file.
+Description: | An integer overflow flaw was found which, when the mod_setenvif module is
+enabled, could allow local users to gain privileges via a.htaccess file. |
Acknowledgements: | This issue was reported by halfdog |
Reported to security team: | 4th October 2011 |
Issue public: | 2nd November 2011 |