Hi Stefan,
Am 16.08.2018 um 21:13 schrieb Stefan Fritsch:
[...]
> In jessie this has been included in 2.4.10-10+deb8u8 and Antoine did the
> heroic backport to wheezy. So, there should not be anything to to fix in
> Debian.
Excellent. Thank you very much for your confirmation.
Best,
Markus
Hi Markus,
On Wednesday, 15 August 2018 21:22:40 CEST Markus Koschany wrote:
> I am currently investigating CVE-2016-4975 for Apache2. The issue is
> already two years old but was only made public yesterday. [1] I skimmed
> through old commit messages but I could not isolate the fixing commit.
> H
On 2018-08-16 10:12, Moritz Muehlenhoff wrote:
On Thu, Aug 16, 2018 at 05:12:11PM +1000, Brian May wrote:
Note: This is only being sent to debian-LTS.
I am currently investigating CVE-2016-4975 for Apache2. The issue is
already two years old but was only made public yesterday. [1] I skimmed
th
On Thu, Aug 16, 2018 at 05:12:11PM +1000, Brian May wrote:
> Note: This is only being sent to debian-LTS.
>
> > I am currently investigating CVE-2016-4975 for Apache2. The issue is
> > already two years old but was only made public yesterday. [1] I skimmed
> > through old commit messages but I cou
Note: This is only being sent to debian-LTS.
> I am currently investigating CVE-2016-4975 for Apache2. The issue is
> already two years old but was only made public yesterday. [1] I skimmed
> through old commit messages but I could not isolate the fixing commit.
> However I found this changelog en
Hello Stefan,
I am currently investigating CVE-2016-4975 for Apache2. The issue is
already two years old but was only made public yesterday. [1] I skimmed
through old commit messages but I could not isolate the fixing commit.
However I found this changelog entry [2] from December 13th, 2016 and
yo
