Red Hat Bugzilla – Bug 426368
CVE-2004-2680 mod_python arbitrary data disclosure flaw
Last modified: 2011-11-23 11:04:03 EST
------- Comment From firstname.lastname@example.org 2011-01-31 15:05 EDT-------
Did this make it into 4.9?
------- Comment From email@example.com 2011-02-17 17:27 EDT-------
Since I don't see an updated mod_python package on RHN in the RHEL 4 beta channel, I don't expect this made 4.9 after all. The original submitter seems to have left IBM somewhere along the four years this bug was around though I am sure we can probably find someone else to verify the fix if there is one. For the moment, I am closing this as WILL_NOT_FIX. Thanks.
This is currently in accepted state for RHEL 4.9.
(In reply to comment #12)
> This is currently in accepted state for RHEL 4.9.
This bug is *proposed* for RHEL 4.9 at this moment.
RHEL 4.9 is in Production III Phase now, see https://access.redhat.com/support/policy/updates/errata/
According to definition, this bug does not qualify for acceptance criteria (see url above) and is unlikely to be fixed.
I'm going to WONTFIX this bug. It's not worth fixing anymore.