Debian Security Advisory DSA 1000-2 (libapreq2-perl)

The remote host is missing an update to libapreq2-perl announced via advisory DSA 1000-2. Gunnar Wolf noticed that the correction for the following problem was not complete and requires an update. For completeness we're providing the original problem description: An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU consumption. The old stable distribution (woody) does not contain this package.

For the stable distribution (sarge) this problem has been fixed in version 2.04-dev-1sarge2. For the unstable distribution (sid) this problem has been fixed in version 2.07-1. We recommend that you upgrade your libapreq2, libapache2-mod-apreq2 https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201000-2