Debian Security Advisory DSA 1131-1 (apache)

Summary
The remote host is missing an update to apache announced via advisory DSA 1131-1. Mark Dowd discovered a buffer overflow in the mod_rewrite component of apache, a versatile high-performance HTTP server. In some situations a remote attacker could exploit this to execute arbitary code.
Solution
For the stable distribution (sarge) this problem has been fixed in version 1.3.33-6sarge2. For the unstable distribution (sid) this problems will be fixed shortly. We recommend that you upgrade your apache package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201131-1