the mod_ssl included in the apache2.0.39 is reporting as version 2.8.7 which is vulnerable to buffer overflow. CVE: CAN-2002-0082
Is the mod_ssl with 2.0.39 vulnerable as reported? or is this a false positive? If it is vulnerable, how do I update the mod_ssl as distributed with apache2.0.39 to the june-24th release of 2.8.10 for apache1.3.26? Thanks, Arlen Duncan II ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
