Mandriva Linux Security Advisory 2009-300 - The Apache HTTP Server enables the HTTP TRACE method per default which allows remote attackers to conduct cross-site scripting (XSS) attacks via unspecified web client software. This update provides a solution to this vulnerability. The wrong package was uploaded for 2009.1. This update addresses that problem.
233bbf7db6114d34fc85d6e15dfa3e7a7c0e3e0ed906cc0fd0a3bfe739e2da6f