Re: apache2 CVE-2018-17199 stretch
On Monday, 18 March 2019 09:19:41 CET Bjørn Håkon Noss wrote:
> After looking at the Security tracker
> (https://security-tracker.debian.org/tracker/CVE-2018-17199), I can
> see that CVE-2018-17199 is fixed in both jessie and buster but not
> stretch.
>
> Do you have any information about if and when it will be fixed in stretch?
>
> The bug causes our PCI Compliance to fail.
As this is low severity, we intend to fix this in the next Debian stable point
release (9.9).
Cheers,
Stefan
Reply to: