apache2 port
Eli Dart
dart at nersc.gov
Thu Sep 30 13:45:21 PDT 2004
Hi all,
There has been another vulnerability [1] discovered in apache2. This
affects only version 2.0.51 (where it was introduced). The ports
tree is frozen, pending 5.3-R, so I assume that an update of the
apache2 port to 2.0.52 is not forthcoming any time soon.
The question is this -- since the apache2 in the ports tree is 2.0.50
plus patches, does the version in the ports tree have this
vulnerability? It seems that it only would if the patches to 2.0.50
introduced the vulnerability... Does anyone know?
Thanks!
--eli
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 224 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20040930/78bae5c2/attachment.bin
More information about the freebsd-security
mailing list