Hi, i've the latest stable version of apache1.3.x and the `glsa-check -l` command tells me that my apache is affected by glsa number 200310-04. As i can see with -d, this bug is only exists in apache2 releases. I think the problem is this: "Vulnerable: <2.0.48 Unaffected: >=2.0.48" 1.3.x is smaller than 2.0.48, so it thinks its affected.. It's very important to fix it because i use a script to monitor 'glsa-check -l', look for '[N]' and send emails if any package is vulnerable. bye szab
There was an error in that (old) GLSA. I think I fixed it : please sync in an hour and test again.
Yes, you made it :) thanx