]> git.pld-linux.org Git - packages/apache.git/commit
projects / packages / apache.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d624566) | patch
- up to 2.4.46;Fixes: auto/th/apache-2.4.46-1
authorArkadiusz Miśkiewicz <arekm@maven.pl>
Tue, 18 Aug 2020 20:17:20 +0000 (22:17 +0200)
committerArkadiusz Miśkiewicz <arekm@maven.pl>
Tue, 18 Aug 2020 20:17:20 +0000 (22:17 +0200)
commit67b26e16eb6adc53b721368fd1331fe47d3f170b
tree0eae502bf6573c4f4694aac81784d52d1ffe4df2tree | snapshot
parentd624566de607bbc4a80175f581881a5067d5e02bcommit | diff
- up to 2.4.46;Fixes:

  *) SECURITY: CVE-2020-11984 (cve.mitre.org)
     mod_proxy_uwsgi: Malicious request may result in information
     disclosure or RCE of existing file on the server running under a malicious
     process environment. [Yann Ylavic]

  *) SECURITY: CVE-2020-11993 (cve.mitre.org)
     mod_http2: when throttling connection requests, log statements
     where possibly made that result in concurrent, unsafe use of
     a memory pool. [Stefan Eissing]

  *) SECURITY:
     mod_http2: a specially crafted value for the 'Cache-Digest' header
     request would result in a crash when the server actually tries
     to HTTP/2 PUSH a resource afterwards.
     [Stefen Eissing, Eric Covener, Christophe Jaillet]
apache.spec diff | blob | blame | history
The most widely used Web server on the Internet
This page took 0.138731 seconds and 4 git commands to generate.