| Release | Version |
|---|---|
| jessie | 1.5.4-1 |
| stretch | 1.5.4-3 |
| buster | 1.6.1-4 |
| sid | 1.6.1-4 |
| Bug | jessie | stretch | buster | sid | Description |
|---|---|---|---|---|---|
| CVE-2017-12618 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to val ... |
| Bug | Description |
|---|---|
| CVE-2016-6312 | The mod_dontdothat component of the mod_dav_svn Apache module in Subve ... |
| CVE-2010-1623 | Memory leak in the apr_brigade_split_line function in buckets/apr_brig ... |
| CVE-2009-2412 | Multiple integer overflows in the Apache Portable Runtime (APR) librar ... |
| CVE-2009-1956 | Off-by-one error in the apr_brigade_vprintf function in Apache APR-uti ... |
| CVE-2009-1955 | The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Ap ... |
| CVE-2009-0023 | The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apa ... |
| DSA / DLA | Description |
|---|---|
| DLA-1163-1 | apr-util - security update |
| DSA-2117-1 | apr-util - denial of service |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1812-1 | apr-util - several vulnerabilities |
| DSA-1812-1 | apr-util - several vulnerabilities |