| Release | Version |
|---|---|
| wheezy | 1.4.1-3 |
| wheezy (security) | 1.4.1-3+deb7u1 |
| jessie | 1.5.4-1 |
| stretch | 1.5.4-3 |
| buster | 1.6.1-2 |
| sid | 1.6.1-2 |
| Bug | wheezy | jessie | stretch | buster | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2017-12618 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to ... |
| Bug | Description |
|---|---|
| CVE-2016-6312 | The mod_dontdothat component of the mod_dav_svn Apache module in ... |
| CVE-2010-1623 | Memory leak in the apr_brigade_split_line function in ... |
| CVE-2009-2412 | Multiple integer overflows in the Apache Portable Runtime (APR) ... |
| CVE-2009-1956 | Off-by-one error in the apr_brigade_vprintf function in Apache ... |
| CVE-2009-1955 | The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in ... |
| CVE-2009-0023 | The apr_strmatch_precompile function in strmatch/apr_strmatch.c in ... |
| DSA / DLA | Description |
|---|---|
| DLA-1163-1 | apr-util - security update |
| DSA-2117-1 | apr-util - denial of service |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1812-1 | apr-util - several vulnerabilities |
| DSA-1812-1 | apr-util - several vulnerabilities |