Debian Linux Security Advisory 4509-3 - It was reported that the apache2 update released as DSA 4509-1 incorrectly fixed CVE-2019-10092. Updated apache2 packages are now available to correct this issue.
cb6624cbd5a3bf001dfbacaec03e79bed76d1be5363b53d08b7df0a957671486