Apache 2.0.51

Címkék

Megjelent az Apache 2.0.51-es verziója. A kiadás elsősorban bugfixeket tartalmaz, konkrétan öt fontosabb biztonsági hibát is javítottak benne:* An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. (CAN-2004-0786)

* A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. (CAN-2004-0747)

* A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. (CAN-2004-0751)

* A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. (CAN-2004-0748)

* A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. (CAN-2004-0809)

A frissítés ajánlott!

Bejelentés itt, letöltés itt.