Re: [oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-07-03 Thread Ninette Adhikari
I pulled the latest and I see the apache2 version is updated to 2.4.60. But the CVE list still has the following CVEs listed: CVE-2007-0450, CVE-2010-0425 I'll send a new patch against the latest master branch

Re: [oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-07-03 Thread Khem Raj
Please rebase it on latest master and see if it’s still needed On Wed, Jul 3, 2024 at 10:44 AM Ninette Adhikari wrote: > Hi Khem, > This is meant for the 'master' branch. It is a status update for some CVEs. > I'll make sure to include the branch name in the subject for future > patches. For thi

Re: [oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-07-03 Thread Ninette Adhikari
Hi Khem, This is meant for the 'master' branch. It is a status update for some CVEs. I'll make sure to include the branch name in the subject for future patches. For this patch, do I need to resend it with an updated subject line? Please let me know. Thanks so much! Ninette On Wed, Jul 3, 2024 at

Re: [oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-07-03 Thread Khem Raj
which branch is it for ? Please mark it accordingly in subject line see - https://docs.yoctoproject.org/dev/contributor-guide/submit-changes.html#submitting-changes-to-stable-release-branches On Wed, Jul 3, 2024 at 9:40 AM Ninette Adhikari via lists.openembedded.org wrote: > > Update status for:

[oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-07-03 Thread Ninette Adhikari
Update status for: CVE-2007-0450, CVE-2010-0425 The current version (2.4.59) is not affected. It only applies for Windows. Ninette Adhikari (1): apache2:apache2-native: CVE status update meta-webserver/recipes-httpd/apache2/apache2_2.4.59.bb | 2 ++ 1 file changed, 2 insertions(+) -- 2.44.0

[oe] [PATCH 0/1] apache2:apache2-native: CVE status update for CVE-1999-0289

2024-07-03 Thread Ninette Adhikari
CVE only applies for Windows Ninette Adhikari (1): apache2:apache2-native: CVE status update for CVE-1999-0289 meta-webserver/recipes-httpd/apache2/apache2_2.4.59.bb | 1 + 1 file changed, 1 insertion(+) -- 2.44.0 -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. V

[oe] [PATCH 0/1] apache2:apache2-native: CVE status update

2024-06-26 Thread Ninette Adhikari
Update status for: CVE-2007-6421, CVE-2007-6422, CVE-2007-6423, CVE-2008-2168 CPE is incorrect, the current version (2.4.59) is not affected. Ninette Adhikari (1): apache2:apache2-native: CVE status update meta-webserver/recipes-httpd/apache2/apache2_2.4.59.bb | 5 + 1 file changed, 5 ins