Apache HTTP Server 2.4.28 Released
October 5, 2017
The Apache Software Foundation and the Apache HTTP Server Project
are pleased to announce the release of version 2.4.28 of the Apache
HTTP Server ("Apache"). This version of Apache is our latest GA
release of the new generation 2.4.
CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
all versions through 2.2.33 and 2.4.26
Description:
The value placeholder in [Proxy-]Authorization headers
of type 'Digest' was not initialized or rese
CVE-2017-9789: Read after free in mod_http2.c
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
httpd 2.4.26
Description:
When under stress, closing many connections, the HTTP/2
handling code would sometimes access memory after it has
been freed, resulting in potenti
July 11, 2017
The Apache Software Foundation and the Apache HTTP Server Project
announce the release of version 2.2.34 of the Apache HTTP Server
("Apache"), the final maintenance release of the 2.2 series. No
further 2.2 releases are anticipated. This version of Apache is
princip
Apache HTTP Server 2.2.29 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.29 of the Apache HTTP
Server ("Apache"). (Note that 2.2.28 was not released). This version
of Apache is princip
Apache HTTP Server 2.2.27 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.27 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a security
and bug fix maintena
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.24 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a security
and bug fix maintenance release, including the following significant
securit
Apache HTTP Server 2.2.22 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.22 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a security
and bug fix release,
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.21 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a security
and bug fix release:
* SECURITY: CVE-2011-3348 (cve.mitre.org)
mod
Apache HTTP Server 2.2.19 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.19 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a bug fix
release, correcting r
New releases are in progress for each of these projects and are
expected to be available in the coming days. The upcoming httpd
2.2.19 will bundle new releases of apr and apr-util which correct
the regressions described below. An announcement of these releases
will be broadcast.
Note: httpd 2.2
Apache HTTP Server 2.2.18 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.18 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a bug fix
release, and a securi
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.17 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a bug fix
release, and a security fix release of the APR-util 1.3.10 dependency;
*
Vulnerability; httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068
Classification; important
Description;
A timeout detection flaw in the httpd mod_proxy_http module causes
proxied response to be sent as the response to a different request,
and potentially served to a differe
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release and immediate availability of version
2.2.15 of the Apache HTTP Server ("httpd"). This version of httpd is
principally a security and bug fix release.
Notably, this release was updated to reflect
Apache Portable Runtime 1.2.12 Released
The Apache Software Foundation and the Apache Portable Runtime
Project are proud to announce the General Availability of
version 1.2.12 of the APR Apache Portable Runtime library.
The Project further announces the General Availability of APR-ut
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Apache HTTP Server 2.2.4 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.4 of the Apache HTTP Server
("Apache"). This version of Apache is principally a
Following a vote on dev@httpd.apache.org, and with input from the project
participants on the [EMAIL PROTECTED] Authors' discussion list,
the httpd project is pleased to announce the creation of a new modules-dev
list at httpd.apache.org. Current subscribers to the apache-modules list
will not be
Apache HTTP Server 2.2.3 Released
The Apache Software Foundation and The Apache HTTP Server Project are
pleased to announce the release of version 2.2.3 of the Apache HTTP Server
("Apache").
This version of Apache is principally a bug and security fix release. The
following p
Apache HTTP Server 2.0.55 Released
The Apache Software Foundation and The Apache HTTP Server Project are
pleased to announce the release of version 2.0.55 of the Apache HTTP
Server ("Apache"). This Announcement notes the significant changes
in 2.0.55 as compared to 2.0.
Apache 2.0.45 Released
The Apache Software Foundation and The Apache HTTP Server Project are
pleased to announce the eighth public release of the Apache 2.0
HTTP Server. This Announcement notes the significant changes in
2.0.45 as compared to 2.0.44.
OS2 users; note that Apa
-BEGIN PGP SIGNED MESSAGE-
Apache 1.3.27 Released
The Apache Software Foundation and The Apache Server Project are
pleased to announce the release of version 1.3.27 of the Apache HTTP
Server. This Announcement notes the significant changes in 1.3.27
22 matches
Mail list logo
