Opened 21 years ago

Closed 21 years ago

Last modified 11 years ago

#495 closed defect (fixed)

Apache-2.0.48

Reported by: igor@… Owned by: tushar@…
Priority: high Milestone:
Component: BOOK Version: ~CVS
Severity: normal Keywords: VERIFIED
Cc:

Description

Version increment.

Change History (8)

comment:1 by alexander@…, 21 years ago

There is a link to a known bug in mod_usertrack on the main page. Should we import the patch into the book or wait for 2.0.49?

comment:2 by petri.koistinen@…, 21 years ago

This version of Apache is principally a bug fix release. Of particular note is that 2.0.48 addresses two security vulnerabilities:

mod_cgid mishandling of CGI redirect paths could result in CGI output going to the wrong client when a threaded MPM is used. [CAN-2003-0789] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0789

A buffer overflow could occur in mod_alias and mod_rewrite when a regular expression with more than 9 captures is configured. [CAN-2003-0542] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0542

comment:3 by tushar@…, 21 years ago

Owner: changed from blfs-book@… to tushar@…

Will also change the patch to cat >> config.layout << EOF. Easier to maintain and more robust.

comment:4 by tushar@…, 21 years ago

Status: newassigned

comment:5 by tushar@…, 21 years ago

Resolution: fixed
Status: assignedclosed

comment:6 by tushar@…, 21 years ago

Ignore comment 3, it is not feasible.

comment:7 by igor@…, 21 years ago

Keywords: VERIFIED added

comment:8 by bdubbs@…, 11 years ago

Milestone: old

Milestone old deleted

Note: See TracTickets for help on using tickets.