On Mon, Jul 26, 2004 at 11:15:02AM +0100, Chris Morris wrote: > > DSA-532 contained: > >Package : libapache-mod-ssl > >Vulnerability : several > >Problem-Type : remote > >Debian-specific: no > >CVE Ids : CAN-2004-0488 CAN-2004-0700 > > Is apache-ssl also vulnerable to these? No; mod_ssl and apache-ssl are two separate implementations of similar functionality. They do not actually share a significant amount of code, as far as I know. -- - mdz