[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [Fwd: [Bulletins] Apache httpd, strongSwan, Openswan, FreeS/WAN ...]



> 29.06.2004 : Apache httpd 2.0.49 Apache Input Header DoS Vulnerability

> http://www.k-otik.net/bugtraq/06292004.Apache.php

That page identifies the issue as CAN-2004-0493 which was fixed in sid's
apache2 2.0.50-1 packages. (Stable is unaffected as it doesn't have apache2
packages)

> 29.06.2004 : Multiple Products X.509 Certificates Validation Vuln.

> http://www.k-otik.net/bugtraq/06292004.X509.php

CAN-2004-0590. This doesn't affect stable (see
http://www.debian.org/security/nonvulns-woody). For sid's openswan it's
been fixed in 2.1.3-1 (see the logs of http://bugs.debian.org/256391). For
sid's freeswan it's been fixed in 2.04-10 (see that package's changelog).

HTH,
Ray
-- 
Linux is many, many years away from being an enterprise-ready operating
system that can compete with, and challenge, the Windows platform. There is
also no vision or driving force around it.
	Doug Miller, Microsoft Windows Server Group, january 2001



Reply to: