Change History (8)
comment:1 by , 20 years ago
comment:2 by , 20 years ago
This version of Apache is principally a bug fix release. Of particular note is that 2.0.48 addresses two security vulnerabilities:
mod_cgid mishandling of CGI redirect paths could result in CGI output going to the wrong client when a threaded MPM is used. [CAN-2003-0789] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0789
A buffer overflow could occur in mod_alias and mod_rewrite when a regular expression with more than 9 captures is configured. [CAN-2003-0542] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0542
comment:3 by , 20 years ago
| Owner: | changed from to |
|---|
Will also change the patch to cat >> config.layout << EOF. Easier to maintain and more robust.
comment:4 by , 20 years ago
| Status: | new → assigned |
|---|
comment:5 by , 20 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
comment:7 by , 20 years ago
| Keywords: | VERIFIED added |
|---|
Note:
See TracTickets
for help on using tickets.
There is a link to a known bug in mod_usertrack on the main page. Should we import the patch into the book or wait for 2.0.49?