The Camel PMC is pleased to announce the release of Apache Camel 3.7.6.
Apache Camel is an open source integration framework that empowers you
to quickly and easily integrate various systems consuming or producing
data.
This release is a patch release for the LTS 3.7.x branch that contains
15 bug
Apache HTTP Server 2.4.50 Released
October 04, 2021
The Apache Software Foundation and the Apache HTTP Server Project
are pleased to announce the release of version 2.4.50 of the Apache
HTTP Server ("Apache"). This version of Apache is our latest GA
release of the
Dear CouchDB community,
Apache CouchDB® 3.1.2 has been released and is available for download.
CouchDB 3.1.2 is a security release for a low severity security issue, and was
originally published on 2021-10-05.
Details for the security issue will be published one week after this release.
See th
Severity: important
Description:
A flaw was found in a change made to path normalization in Apache HTTP Server
2.4.49. An attacker could use a path traversal attack to map URLs to files
outside the expected document root.
If files outside of the document root are not protected by "require al
Severity: moderate
Description:
While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected
during HTTP/2 request processing,
allowing an external source to DoS the server. This requires a specially
crafted request.
The vulnerability was recently introduced in version 2.4.49.
