Cray Inc. Information for VU#849993

Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function

Status

Not Affected

Vendor Statement

Cray, Inc. does not distribute Apache with any of its operating systems.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.