Ubuntu Security Notice 5551-1 - It was discovered that mod-wsgi did not correctly remove the X-Client-IP header when processing requests from untrusted proxies. A remote attacker could use this issue to pass the header to WSGI applications, contrary to expectations.
c0d8b0811cff1c4ea3ce6d3631247e214ed04798446bc13c1afab5378aab94e1