[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#734446: pu: package apache2/2.2.16-6+squeeze11a - CVE-2013-1862



Am Dienstag, 7. Januar 2014, 11:21:25 schrieben Sie:
> CVE-2013-1862 is a low impact security bug. It should be fixed via
> pu. Apache maintainers: Do you want to handle this yourself?

I was intending to batch this together with the next DSA for a more 
important issue, but so far no such issue has appeared. There is also 
CVE-2013-1896 and one other equally low impact, but yet undisclosed 
issue open.

And if we do an p-u upload, there would be one or two non-security 
bugfixes and possibly the ECDHE backport #733564 one could include. Is 
CVE-2013-1862 really so important that it needs to be fixed soon?


Reply to: