diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-03-08 20:26:54 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-03-09 13:30:42 +0100 |
commit | 5dc0394bc0812734cfeddf62deae76ee49d856bd (patch) | |
tree | 5cc3b19714ab1c0d96373ca676d2ded24d738f66 /patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt | |
parent | 354174cc64b7fd49a03da70a8e8f9cddfe29dad7 (diff) | |
download | current-682c1d50cb2471bf3a7104bdc7b994d0cd19fd9b.tar.gz current-682c1d50cb2471bf3a7104bdc7b994d0cd19fd9b.tar.xz |
Wed Mar 8 20:26:54 UTC 202320230308202654_15.0
patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txz: Upgraded.
This update fixes two security issues:
HTTP Response Smuggling vulnerability via mod_proxy_uwsgi.
HTTP Request Smuggling attack via mod_rewrite and mod_proxy.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.56
https://www.cve.org/CVERecord?id=CVE-2023-27522
https://www.cve.org/CVERecord?id=CVE-2023-25690
(* Security fix *)
Diffstat (limited to 'patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt')
-rw-r--r-- | patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt b/patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt new file mode 100644 index 000000000..3185f84d3 --- /dev/null +++ b/patches/packages/httpd-2.4.56-x86_64-1_slack15.0.txt @@ -0,0 +1,11 @@ +httpd: httpd (The Apache HTTP Server) +httpd: +httpd: Apache is an HTTP server designed as a plug-in replacement for the +httpd: NCSA HTTP server. It fixes numerous bugs in the NCSA server and +httpd: includes many frequently requested new features, and has an API which +httpd: allows it to be extended to meet users' needs more easily. +httpd: +httpd: Apache is the most popular web server in the known universe; over +httpd: half of the servers on the Internet are running Apache or one of +httpd: its variants. +httpd: |