Debian 10260 Published by

Updated libapreq2 packages has been released for Debian GNU/Linux 8 LTS



Package : libapreq2
Version : 2.13-4+deb8u1
CVE ID : CVE-2019-12412
Debian Bug : #939937

It was discovered that there was a remotely-exploitable null pointer
dereference in libapreq2, a library for manipulating HTTP requests.

For Debian 8 "Jessie", this issue has been fixed in libapreq2 version
2.13-4+deb8u1.

We recommend that you upgrade your libapreq2 packages.