Fixed in Debian 4.0r3
Posted Feb 21, 2008 22:26 UTC (Thu) by kmccarty
Parent article: apache: multiple vulnerabilities
FYI, these were fixed in the latest Debian "Etch" release, 4.0r3, in apache version 1.3.34-4.1+etch1. For some reason it was not deemed necessary to issue a Debian Security Advisory, but people with the usual lines in their sources.list should get the update automatically on their next APT update and upgrade.
to post comments)