Debian Apache2 vulnerabilities

CVE-2002-1156 [MEDIUM] CVE-2002-1156: apache2 - Apache 2.0.42 allows remote attackers to view the source code of a CGI script vi... Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled. Scope: local bookworm: resolved (fixed in 2.0.43) bullseye: resolved (fixed in 2.0.43) forky: resolved (fixed in 2.0.43) sid: resolved (fixed in 2.0.43) trixie: resolved (fixed in 2.0.43)

CVE-2001-1534 [LOW] CVE-2001-1534: apache2 - mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predi... mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP address, system time and server process ID, which allows local users to obtain session ID's and bypass authentication when these session ID's are used for authentication. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open