The Apache folks have released version 2.4.9 of their ubiquitous web server. This one fixes a couple of security vulnerabilities along with some other bug fixes, one in mod_log_config having to do with issues with truncated cookies and one in mod_dav that was a potential denial of service. Expect most of the Linux distros to apply the appropriate fixes shortly, but if you are building from source or running on a platform that won't push the updates to you, go grab the update.
References: http://httpd.apache.org/security/vulnerabilities_24.html http://www.apache.org/dist/httpd/CHANGES_2.4.9
--------------- |
Jim 418 Posts ISC Handler Mar 17th 2014 |
Thread locked Subscribe |
Mar 17th 2014 6 years ago |
Expect Apple to incorporate it into OS X sometime in early 2016
|
Anonymous |
Quote |
Mar 17th 2014 6 years ago |
Sign Up for Free or Log In to start participating in the conversation!