Package: libapache-mod-ssl Severity: grave Tags: security Justification: user security hole
This is CVE-2009-3555 and is related to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555829 I think there's no upstream fix for modssl atm, nevertheless this should be tracked somewhere. Perhaps libapache-mod-ssl should be listed at http://security-tracker.debian.org/tracker/CVE-2009-3555 as well. -- System Information: Debian Release: 4.0 APT prefers oldstable APT policy: (500, 'oldstable') Architecture: i386 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.30.5-grsec Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
