On Wed, Jun 08, 2022 at 07:51:28PM +0200, Yadd wrote:
> Hi,
>
> those CVEs are tagged low/moderate by upstream, why did you tag this bug as
> grave ?
Anything moderate or above should get fixed by the next Debian release IOW RC
severity.
Cheers,
Moritz
Hi,
those CVEs are tagged low/moderate by upstream, why did you tag this bug as
grave ?
Cheers,
Yadd
Le Mercredi, Juin 08, 2022 17:49 CEST, Moritz Mühlenhoff a
écrit:
> Source: apache2
> X-Debbugs-CC: t...@security.debian.org
> Severity: grave
> Tags: security
>
> Hi,
>
> The following
Source: apache2
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerabilities were published for apache2.
CVE-2022-31813[0]:
| Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-*
| headers to the origin server based on client side
3 matches
Mail list logo