diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2023-03-08 20:26:54 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2023-03-09 13:30:42 +0100 |
| commit | 5dc0394bc0812734cfeddf62deae76ee49d856bd (patch) | |
| tree | 5cc3b19714ab1c0d96373ca676d2ded24d738f66 /ChangeLog.txt | |
| parent | 354174cc64b7fd49a03da70a8e8f9cddfe29dad7 (diff) | |
| download | current-5dc0394bc0812734cfeddf62deae76ee49d856bd.tar.gz current-5dc0394bc0812734cfeddf62deae76ee49d856bd.tar.xz | |
Wed Mar 8 20:26:54 UTC 202320230308202654_15.0
patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txz: Upgraded.
This update fixes two security issues:
HTTP Response Smuggling vulnerability via mod_proxy_uwsgi.
HTTP Request Smuggling attack via mod_rewrite and mod_proxy.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.56
https://www.cve.org/CVERecord?id=CVE-2023-27522
https://www.cve.org/CVERecord?id=CVE-2023-25690
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index b2e0d1b28..561c98960 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,14 @@ +Wed Mar 8 20:26:54 UTC 2023 +patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txz: Upgraded. + This update fixes two security issues: + HTTP Response Smuggling vulnerability via mod_proxy_uwsgi. + HTTP Request Smuggling attack via mod_rewrite and mod_proxy. + For more information, see: + https://downloads.apache.org/httpd/CHANGES_2.4.56 + https://www.cve.org/CVERecord?id=CVE-2023-27522 + https://www.cve.org/CVERecord?id=CVE-2023-25690 + (* Security fix *) ++--------------------------+ Mon Mar 6 20:18:10 UTC 2023 patches/packages/sudo-1.9.13p3-x86_64-1_slack15.0.txz: Upgraded. This is a bugfix release. |