Back to bug 750935
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Vincent Danen | 2011-11-02 21:15:12 UTC | CC | jkaluza, jorton, pahan, pcheung, prc | |
| Vincent Danen | 2011-11-02 21:18:32 UTC | Blocks | 750936 | |
| Vincent Danen | 2011-11-02 21:19:41 UTC | Depends On | 750937 | |
| Ramon de C Valle | 2011-11-04 13:15:18 UTC | CC | rcvalle | |
| Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/httpd=affected,rhel-5/httpd=affected,rhel-6/httpd=affected,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected jbews-1-el5/httpd=affected,jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-4/httpd=affected,rhel-5/httpd=affected,rhel-6/httpd=affected,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected jbews-1-el5/httpd=affected,jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | ||
| Ramon de C Valle | 2011-11-04 13:17:28 UTC | Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,rhel-4/httpd=affected,rhel-5/httpd=affected,rhel-6/httpd=affected,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected jbews-1-el5/httpd=affected,jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/httpd=affected,rhel-5/httpd=affected,rhel-6/httpd=affected,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected jbews-1-el5/httpd=affected,jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer |
| Ramon de C Valle | 2011-11-04 15:45:22 UTC | Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/httpd=affected,rhel-5/httpd=affected,rhel-6/httpd=affected,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected jbews-1-el5/httpd=affected,jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected,jbews-1-el5/httpd=affected jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer |
| Vincent Danen | 2011-11-08 15:24:19 UTC | Summary | CVE-2011-3607 apache: integer overflow in ap_pregsub() leads to buffer overflow | CVE-2011-3607 CVE-2011-4415 apache: integer overflow in ap_pregsub() leads to buffer overflow |
| Alias | CVE-2011-4415 | |||
| Tomas Hoger | 2011-11-08 15:33:00 UTC | Summary | CVE-2011-3607 CVE-2011-4415 apache: integer overflow in ap_pregsub() leads to buffer overflow | CVE-2011-3607 CVE-2011-4415 httpd: integer overflow in ap_pregsub() leads to buffer overflow |
| Ramon de C Valle | 2011-11-10 11:29:10 UTC | Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1-el4/httpd22=affected,jbews-1-el5/httpd=affected jbews-1-el6/httpd=affected,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1-el4/httpd22=defer,jbews-1-el5/httpd=defer jbews-1-el6/httpd=defer,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer |
| Tomas Hoger | 2011-11-18 13:27:34 UTC | Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1-el4/httpd22=defer,jbews-1-el5/httpd=defer jbews-1-el6/httpd=defer,certificate_system_7.3/httpd=defer,directory_server_8/httpd=defer | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1/httpd=defer,certificate_system_7.3/httpd=wontfix directory_server_8/httpd=wontfix |
| Ramon de C Valle | 2011-12-22 13:15:53 UTC | Alias | CVE-2011-3607 | |
| Ramon de C Valle | 2011-12-22 13:16:15 UTC | Summary | CVE-2011-3607 CVE-2011-4415 httpd: integer overflow in ap_pregsub() leads to buffer overflow | CVE-2011-4415 httpd: integer overflow in ap_pregsub() leads to buffer overflow |
| Ramon de C Valle | 2011-12-22 13:19:11 UTC | Summary | CVE-2011-4415 httpd: integer overflow in ap_pregsub() leads to buffer overflow | CVE-2011-4415 httpd: SetEnvIf resource exhaustion |
| Markus Falb | 2011-12-22 14:15:38 UTC | CC | markus.falb | |
| Ramon de C Valle | 2011-12-22 14:38:24 UTC | Depends On | 750937 | |
| Ramon de C Valle | 2011-12-22 14:42:38 UTC | Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=defer,rhel-5/httpd=defer,rhel-6/httpd=defer,fedora-all/httpd=affected,jbews-1/httpd=defer,certificate_system_7.3/httpd=wontfix directory_server_8/httpd=wontfix | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=wontfix,rhel-5/httpd=wontfix,rhel-6/httpd=wontfix,fedora-all/httpd=wontfix,jbews-1/httpd=wontfix certificate_system_7.3/httpd=wontfix,directory_server_8/httpd=wontfix |
| Ramon de C Valle | 2011-12-22 14:44:09 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2011-12-22 09:44:09 UTC | |||
| Ramon de C Valle | 2011-12-22 14:56:18 UTC | Priority | medium | low |
| Whiteboard | impact=moderate,public=20111102,reported=20111102,source=full-disclosure,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,rhel-4/httpd=wontfix,rhel-5/httpd=wontfix,rhel-6/httpd=wontfix,fedora-all/httpd=wontfix,jbews-1/httpd=wontfix certificate_system_7.3/httpd=wontfix,directory_server_8/httpd=wontfix | impact=low,public=20111102,reported=20111102,source=full-disclosure,cvss2=3.5/AV:N/AC:M/Au:S/C:N/I:N/A:P,rhel-4/httpd=wontfix,rhel-5/httpd=wontfix,rhel-6/httpd=wontfix,fedora-all/httpd=wontfix,jbews-1/httpd=wontfix,certificate_system_7.3/httpd=wontfix directory_server_8/httpd=wontfix | ||
| Severity | medium | low | ||
| Mark J. Cox | 2012-01-26 16:17:21 UTC | CC | mjc | |
| Jan Lieskovsky | 2012-01-27 09:06:45 UTC | CC | jlieskov | |
| Product Security DevOps Team | 2019-09-29 12:48:47 UTC | Whiteboard | impact=low,public=20111102,reported=20111102,source=full-disclosure,cvss2=3.5/AV:N/AC:M/Au:S/C:N/I:N/A:P,rhel-4/httpd=wontfix,rhel-5/httpd=wontfix,rhel-6/httpd=wontfix,fedora-all/httpd=wontfix,jbews-1/httpd=wontfix,certificate_system_7.3/httpd=wontfix,directory_server_8/httpd=wontfix |
Back to bug 750935