On Thu, Feb 26, 2015 at 12:29:28PM +1100, Geoff Crompton wrote:
Given the fix for this went into -4, it seems likely 2.4.31+really2.4.40-3~bpo70+1 (the wheezy backport) is vulnerable.Could someone confirm that?
It is, yes.An updated backport has been uploaded, we're waiting for ftpmaster to let it into the repository now.
https://ftp-master.debian.org/backports-new.html
signature.asc
Description: Digital signature
