Just to make it clear to people:

- The "Satisfy" vulnerability only affects servers with specific complex authentication configurations, and even in the worst case scenario it only exposes private data, does not allow code execution or anything (unless combined with some other vuln)
- The Rewrite vulnerability only affects sites using the rewrite module - which is disabled by default and is used very rarely.
- The .htaccess code execution vulnerability is only an issue if users who are allowed to write .htaccess files are not allowed to execute arbritary code anyway. Most of them are, as they are allowed to create PHP or CGI programs or have shell access. It could of course potentially be used in an escalation exploit from some other vulnerability.

None of them is something I'd consider serious - although of course patching is a good idea. 2.0.52 has been released and is not vulnerable to any of them.

I have of course upgraded my server, even though I don't believe its configuration is affected by any of the above anyway.

Slarty