| Release | Version |
|---|---|
| wheezy | 1.4.1-3 |
| jessie | 1.5.4-1 |
| stretch | 1.5.4-2 |
| sid | 1.5.4-2 |
| Bug | Description |
|---|---|
| CVE-2016-6312 | |
| CVE-2010-1623 | Memory leak in the apr_brigade_split_line function in ... |
| CVE-2009-2412 | Multiple integer overflows in the Apache Portable Runtime (APR) ... |
| CVE-2009-1956 | Off-by-one error in the apr_brigade_vprintf function in Apache ... |
| CVE-2009-1955 | The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in ... |
| CVE-2009-0023 | The apr_strmatch_precompile function in strmatch/apr_strmatch.c in ... |
| DSA / DLA | Description |
|---|---|
| DSA-2117-1 | apr-util - denial of service |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1854-1 | apr apr-util - arbitrary code execution |
| DSA-1812-1 | apr-util - several vulnerabilities |
| DSA-1812-1 | apr-util - several vulnerabilities |