Hello Stefan, I'm not sure if you saw these recent CVE for apache?
Security patches were published with them. Any idea when they will be integrated into debian? I had received these CVE early on on the apache-dev mailing list. KUDOS! --jose Jun 19 Jacob Champion ( 35) [SECURITY] CVE-2017-3167: ap_get_basic_auth_pw authentication bypass Jun 19 Jacob Champion ( 27) [SECURITY] CVE-2017-3169: mod_ssl null pointer dereference Jun 19 Jacob Champion ( 23) [SECURITY] CVE-2017-7659: mod_http2 null pointer dereference Jun 19 Jacob Champion ( 31) [SECURITY] CVE-2017-7668: ap_find_token buffer overread Jun 19 Jacob Champion ( 27) [SECURITY] CVE-2017-7679: mod_mime buffer overread
