• info
• discussion
• exploit
• solution
• references

Apache Mod_Proxy Remote Negative Content-Length Buffer Overflow Vulnerability

Solution:
Updates are available. Please see the references for more information.


OpenBSD OpenBSD 3.5

• OpenBSD 013_httpd.patch
  ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/013_httpd.patch

OpenBSD OpenBSD 3.4

• OpenBSD 025_httpd3.patch
  ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/025_httpd3.patch

Sun Solaris 9_x86

• Sun T-patch T114145-04.tar.Z
  http://sunsolve.sun.com/pub-cgi/show.pl?target=security/tpatches


• Sun 114145-04
  http://sunsolve.sun.com/search/pdownload.pl?target=114145-04&method=hs

Apache Software Foundation Apache 1.3

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.1

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.14

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.17

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.22

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.23

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• TurboLinux apache-1.3.27-26.i586.rpm
  TurboLinux Workstation 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/apache-1.3.27-26.i586.rpm


• TurboLinux apache-devel-1.3.27-26.i586.rpm
  TurboLinux Workstation 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/apache-devel-1.3.27-26.i586.rpm


• TurboLinux apache-manual-1.3.27-26.i586.rpm
  TurboLinux Workstation 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/apache-manual-1.3.27-26.i586.rpm


• TurboLinux mod_ssl-2.8.14-26.i586.rpm
  TurboLinux Workstation 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/mod_ssl-2.8.14-26.i586.rpm

Apache Software Foundation Apache 1.3.25

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

IBM HTTP Server 1.3.26 .1

• IBM PQ89899_1.3.26_AIX
  For AIX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.AIX


• IBM PQ89899_1.3.26_HPUX
  For HPUX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.HPUX


• IBM PQ89899_1.3.26_Linux
  For Linux.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.linux-i386


• IBM PQ89899_1.3.26_Solaris
  For Solaris.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.solaris-sparc


• IBM PQ89899_1.3.26_Windows
  For Windows.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/ApacheModuleProxy.dll.PQ89899.1.3.26.windows

Apache Software Foundation Apache 1.3.26

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• Debian apache-common_1.3.26-0woody5_alpha.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apache/apache-common_1. 3.26-0woody5_alpha.deb


• Debian apache-common_1.3.26-0woody5_arm.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_arm.deb


• Debian apache-common_1.3.26-0woody5_i386.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_i386.deb


• Debian apache-common_1.3.26-0woody5_ia64.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_ia64.deb


• Debian apache-common_1.3.26-0woody5_m68k.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_m68k.deb


• Debian apache-common_1.3.26-0woody5_mips.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_mips.deb


• Debian apache-common_1.3.26-0woody5_mipsel.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_mipsel.deb


• Debian apache-common_1.3.26-0woody5_powerpc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_powerpc.deb


• Debian apache-common_1.3.26-0woody5_s390.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_s390.deb


• Debian apache-common_1.3.26-0woody5_sparc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-common_1.3 .26-0woody5_sparc.deb


• Debian apache-dev_1.3.26-0woody5_alpha.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_alpha.deb


• Debian apache-dev_1.3.26-0woody5_arm.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_arm.deb


• Debian apache-dev_1.3.26-0woody5_hppa.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_hppa.deb


• Debian apache-dev_1.3.26-0woody5_i386.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_i386.deb


• Debian apache-dev_1.3.26-0woody5_ia64.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_ia64.deb


• Debian apache-dev_1.3.26-0woody5_m68k.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_m68k.deb


• Debian apache-dev_1.3.26-0woody5_mips.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_mips.deb


• Debian apache-dev_1.3.26-0woody5_mipsel.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_mipsel.deb


• Debian apache-dev_1.3.26-0woody5_powerpc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_powerpc.deb


• Debian apache-dev_1.3.26-0woody5_s390.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_s390.deb


• Debian apache-dev_1.3.26-0woody5_sparc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache-dev_1.3.26 -0woody5_sparc.deb


• Debian apache-doc_1.3.26-0woody5_all.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apache/apache-doc_1.3.2 6-0woody5_all.deb


• Debian apache_1.3.26-0woody5_alpha.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apache/apache_1.3.26-0w oody5_alpha.deb


• Debian apache_1.3.26-0woody5_arm.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_arm.deb


• Debian apache_1.3.26-0woody5_hppa.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_hppa.deb


• Debian apache_1.3.26-0woody5_i386.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_i386.deb


• Debian apache_1.3.26-0woody5_ia64.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_ia64.deb


• Debian apache_1.3.26-0woody5_m68k.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_m68k.deb


• Debian apache_1.3.26-0woody5_mips.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_mips.deb


• Debian apache_1.3.26-0woody5_mipsel.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_mipsel.deb


• Debian apache_1.3.26-0woody5_powerpc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_powerpc.deb


• Debian apache_1.3.26-0woody5_s390.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_s390.deb


• Debian apache_1.3.26-0woody5_sparc.deb
  Debian GNU/Linux 3.0 (woody)
  http://security.debian.org/pool/updates/main/a/apche/apache_1.3.26-0wo ody5_sparc.deb


• Mandrake apache-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-common-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-common-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-manual-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-manual-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.26-7.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.26-7.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Slackware apache-1.3.32-i386-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-8.1/patches/packages/a pache-1.3.32-i386-1.tgz


• TurboLinux apache-1.3.27-26.i586.rpm
  TurboLinux Server 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/apache-1.3.27-26.i586.rpm


• TurboLinux apache-devel-1.3.27-26.i586.rpm
  TurboLinux Server 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/apache-devel-1.3.27-26.i586.rpm


• TurboLinux apache-manual-1.3.27-26.i586.rpm
  TurboLinux Server 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/apache-manual-1.3.27-26.i586.rpm


• TurboLinux mod_ssl-2.8.14-26.i586.rpm
  TurboLinux Server 8
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/mod_ssl-2.8.14-26.i586.rpm

IBM HTTP Server 1.3.26

• IBM PQ89899_1.3.26_AIX
  For AIX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.AIX


• IBM PQ89899_1.3.26_HPUX
  For HPUX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.HPUX


• IBM PQ89899_1.3.26_Linux
  For Linux.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.linux-i386


• IBM PQ89899_1.3.26_Solaris
  For Solaris.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.solaris-sparc


• IBM PQ89899_1.3.26_Windows
  For Windows.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/ApacheModuleProxy.dll.PQ89899.1.3.26.windows

IBM HTTP Server 1.3.26 .2

• IBM PQ89899_1.3.26_AIX
  For AIX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.AIX


• IBM PQ89899_1.3.26_HPUX
  For HPUX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.HPUX


• IBM PQ89899_1.3.26_Linux
  For Linux.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.linux-i386


• IBM PQ89899_1.3.26_Solaris
  For Solaris.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.26.solaris-sparc


• IBM PQ89899_1.3.26_Windows
  For Windows.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/ApacheModuleProxy.dll.PQ89899.1.3.26.windows

Apache Software Foundation Apache 1.3.27

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• Mandrake apache-1.3.27-8.3.91mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-1.3.27-8.3.91mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.27-8.3.91mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.27-8.3.91mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.27-8.3.91mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.27-8.3.91mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.27-8.3.91mdk.i586.rpm
  Mandrake Linux 9.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.27-8.3.91mdk.ppc.rpm
  Mandrake Linux 9.1/PPC
  http://www.mandrakesecure.net/en/ftp.php


• RedHat apache-1.3.27-5.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/apache-1.3.27 -5.legacy.i386.rpm


• RedHat apache-devel-1.3.27-5.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/apache-devel- 1.3.27-5.legacy.i386.rpm


• RedHat apache-manual-1.3.27-5.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/apache-manual -1.3.27-5.legacy.i386.rpm


• Slackware apache-1.3.32-i386-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/a pache-1.3.32-i386-1.tgz

Apache Software Foundation Apache 1.3.28

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• Mandrake apache-1.3.28-3.3.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-1.3.28-3.3.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.28-3.3.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.28-3.3.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.28-3.3.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.28-3.3.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.28-3.3.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.28-3.3.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Slackware apache-1.3.32-i486-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/a pache-1.3.32-i486-1.tgz

IBM HTTP Server 1.3.28

• IBM PQ89899_1.3.28_AIX
  For AIX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.28.AIX


• IBM PQ89899_1.3.28_HPUX
  For HPUX.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.28.HPUX


• IBM PQ89899_1.3.28_Linux
  For Linux.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.28.linux-i386


• IBM PQ89899_1.3.28_Solaris
  For Solaris.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/libproxy.so.PQ89899.1.3.28.solaris-sparc


• IBM PQ89899_1.3.28_Windows
  For Windows.
  ftp://ftp.software.ibm.com/software/websphere/ihs/support/fixes/PQ8989 9/ApacheModuleProxy.dll.PQ89899.1.3.28.windows

Apache Software Foundation Apache 1.3.29

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• Apple SecUpd2004-12-02Jag.dmg
  For Mac OS X v10.2.8:
  http://www.apple.com/support/downloads/SecUpd2004-12-02Jag.dmg


• Apple SecUpd2004-12-02Pan.dmg
  For Mac OS X v10.3.6:
  http://www.apple.com/support/downloads/SecUpd2004-12-02Pan.dmg


• Apple SecUpdSrvr2004-12-02Jag.dmg
  For Mac OS X Server v10.2.8:
  http://www.apple.com/support/downloads/SecUpdSrvr2004-12-02Jag.dmg


• Apple SecUpdSrvr2004-12-02Pan.dmg
  For Mac OS X Server v10.3.6:
  http://www.apple.com/support/downloads/SecUpdSrvr2004-12-02Pan.dmg


• Mandrake apache-1.3.29-1.2.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-1.3.29-1.2.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.29-1.2.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-devel-1.3.29-1.2.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.29-1.2.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-modules-1.3.29-1.2.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.29-1.2.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake apache-source-1.3.29-1.2.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• OpenPKG apache-1.3.29-2.0.3.src.rpm
  ftp://ftp.openpkg.org/release/2.0/UPD/apache-1.3.29-2.0.3.src.rpm

Apache Software Foundation Apache 1.3.3

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.31

• Apache Software Foundation CAN-2004-0492.patch
  http://marc.theaimsgroup.com/?l=apache-httpd-dev&m=108687304202140&q=p 3


• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz


• Slackware apache-1.3.32-i486-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/ apache-1.3.32-i486-1.tgz


• Trustix apache-1.3.33-1tr.i586.rpm
  Trustix Secure Linux 1.5
  ftp://ftp.trustix.org/pub/trustix/updates/

Apache Software Foundation Apache 1.3.4

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

Apache Software Foundation Apache 1.3.7 -dev

• Apache Software Foundation apache_1.3.33.tar.gz
  http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz

SGI ProPack 2.4

• SGI patch10084.tar.gz
  ftp://patches.sgi.com/support/free/security/patches/ProPack/2.4/patch1 0084.tar.gz