[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 594-1] New Apache packages fix arbitrary code execution

On Wed, Nov 17, 2004 at 01:05:54PM +0100, Martin Schulze wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> - --------------------------------------------------------------------------
> Debian Security Advisory DSA 594-1                     security@debian.org
> http://www.debian.org/security/                             Martin Schulze
> November 17th, 2004                     http://www.debian.org/security/faq
> - --------------------------------------------------------------------------
> 
> Package        : apache

Hi,

What about apache-ssl?  I see updates for apache, apache-common and apache-doc, but not apache-ssl:

# apt-get upgrade -s
Reading Package Lists... Done
Building Dependency Tree... Done
2 packages upgraded, 0 newly installed, 0 to remove and 0  not upgraded.
Inst apache-common (1.3.26-0woody6 Debian-Security:3.0/stable)
Inst apache-doc (1.3.26-0woody6 Debian-Security:3.0/stable)
Conf apache-common (1.3.26-0woody6 Debian-Security:3.0/stable)
Conf apache-doc (1.3.26-0woody6 Debian-Security:3.0/stable)
# dpkg -l |grep apache
ii  apache-common  1.3.26-0woody5 Support files for all Apache webservers
ii  apache-doc     1.3.26-0woody5 Apache webserver docs
ii  apache-ssl     1.3.26.1+1.48- Versatile, high-performance HTTP server with


thanks!
adam

PS: I'm not on debian-security right now so please cc me.  i picked debian-security b/c it was the reply-to header.  sorry if that was the wrong place for this to go.
Reply to: