Bug#734446: pu: package apache2/2.2.16-6+squeeze11a - CVE-2013-1862
Am Dienstag, 7. Januar 2014, 11:21:25 schrieben Sie:
> CVE-2013-1862 is a low impact security bug. It should be fixed via
> pu. Apache maintainers: Do you want to handle this yourself?
I was intending to batch this together with the next DSA for a more
important issue, but so far no such issue has appeared. There is also
CVE-2013-1896 and one other equally low impact, but yet undisclosed
issue open.
And if we do an p-u upload, there would be one or two non-security
bugfixes and possibly the ECDHE backport #733564 one could include. Is
CVE-2013-1862 really so important that it needs to be fixed soon?
Reply to: