Bug#285599: Status of CAN-2003-0987 in Woody?

To: "'Christian Hammers'" <ch@debian.org>, <285599@bugs.debian.org>
Subject: Bug#285599: Status of CAN-2003-0987 in Woody?
From: "Adam Conrad" <adconrad@0c3.net>
Date: Wed, 15 Dec 2004 12:25:32 +1000
Message-id: <[🔎] 007b01c4e24d$5a6600d0$6601a8c0@0c3.net>
Reply-to: "Adam Conrad" <adconrad@0c3.net>, 285599@bugs.debian.org
In-reply-to: <[🔎] 20041214104901.585AE47C03E@xeniac.intern>

Christian Hammers wrote:
> 
> I cannot find a reference to CAN-2003-0987 for Debian Woody. 
> It has been fixed in unstable/sarge in version 1.3.29.0.2-5.

While it appears to be true that this hasn't been fixed in Woody, it's
also pretty low risk, since mod_digest doesn't even work with modern
browsers, and hence is rarely used.  (mod_auth_digest, which does work
with modern browsers, doesn't have the security hole)

... Adam

Reply to:

Follow-Ups:
- Bug#285599: Status of CAN-2003-0987 in Woody?
  - From: Christian Hammers <ch@debian.org>

References:
- Bug#285599: Status of CAN-2003-0987 in Woody?
  - From: Christian Hammers <ch@debian.org>

Prev by Date: Bug#279690: Bug appears as well in current sarge
Next by Date: apache-lingerd sparc binary is up.
Previous by thread: Bug#285599: Status of CAN-2003-0987 in Woody?
Next by thread: Bug#285599: Status of CAN-2003-0987 in Woody?
Index(es):
- Date
- Thread