Hello William, On Fri, Sep 11, 2009 at 8:38 PM, William Yodlowsky <will...@openbsd.org>wrote:
> > The same fix applies to 1.2.x. As in, the diff is the same, excepting line > numbers. Other OS's also patched 1.2.x; see redhat, mandriva... > > Hence you are informed about the fix applied for apr-apr-util id like to bring this thread written by another author also of my interest. http://marc.info/?l=openbsd-ports&m=125263733611608&w=2 The CVE is not very clear in regards to which users would be vulnerable... so if there is any other work arround this would be kindly appreciated. Thank you. David