Gentoo Linux Security Advisory GLSA 200803-19 – Adrian Pastor and Amir Azam (ProCheckUp) reported that the HTTP Method specifier header is not properly sanitized when the HTTP return code is 413 Request Entity too large (CVE-2007-6203). The mod_proxy_balancer module does not properly check the balancer name before using it (CVE-2007-6422). The mod_proxy_ftp does not define a charset in its answers (CVE-2008-0005). Stefano Di Paola (Minded Security) reported that filenames are not properly sanitized within the mod_negociation module (CVE-2008-0455, CVE-2008-0456). Versions less than 2.2.8 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/64520/glsa-200803-19.txt
Source: https://packetstormsecurity.com/files/64520/Gentoo-Linux-Security-Advisory-200803-19.html