Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="164">
  <packager>draht</packager>
  <issue tracker="cve" id="CVE-2013-1862"></issue>
  <issue tracker="cve" id="CVE-2013-1896"></issue>
  <issue tracker="bnc" id="829056"></issue>
  <issue tracker="bnc" id="829057"></issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>update for apache2</summary>
  <description>- httpd-2.2.x-bnc829056-CVE-2013-1896-pr1482522-mod_dav.diff
  CVE-2013-1896: Sending a MERGE request against a URI handled by
  mod_dav_svn with the source href (sent as part of the request
  body as XML) pointing to a URI that is not configured for DAV will
  trigger a segfault. [bnc#829056]
- httpd-2.2.x-bnc829057-CVE-2013-1862-mod_rewrite_terminal_escape_sequences.diff
  CVE-2013-1862: client data written to the RewriteLog must have
  terminal escape sequences escaped. [bnc#829057]</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places