On Tue, 2002-06-18 at 04:07, Wichert Akkerman wrote: > Previously Timm Gleason wrote: > > I looked through the changelogs and the changelog.Debian files, but > > couldn't conclusively decide if the current vulnerability in Apache has > > been taken care of or not. Anyone else know? > > Yes, it's not fixed yet. >
according to Florian Weimer <[EMAIL PROTECTED]> on bugtraq, > 3) Casting to unsigned int does not help that much if the variable in > question is a long. > > The Apache CVS repository now seems contain a correct patch. -- David Stanaway
signature.asc
Description: This is a digitally signed message part
