[SECURITY] [DLA 3921-1] apache2 regression update

To: <[email protected]>
Subject: [SECURITY] [DLA 3921-1] apache2 regression update
From: [email protected]
Date: Thu, 17 Oct 2024 19:42:30 +0000
Message-id: <[🔎] [email protected]>
Mail-followup-to: [email protected]
Reply-to: [email protected]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3921-1                [email protected]
https://www.debian.org/lts/security/                   Bastien RoucariÃ¨s
October 16, 2024                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : apache2
Version        : 2.4.62-1~deb11u2
Debian Bug     : 1079172 1079206

The fixes for CVE-2024-38474 and CVE-2024-39884 introduced two
regressions in mod_rewrite and mod_proxy.

For Debian 11 bullseye, these problems have been fixed in version
2.4.62-1~deb11u2.

We recommend that you upgrade your apache2 packages.

For the detailed security status of apache2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/apache2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=RGeU
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 3922-1] python-cryptography security update
Next by Date: [SECURITY] [DLA 3923-1] php-horde-turba security update
Previous by thread: [SECURITY] [DLA 3922-1] python-cryptography security update
Next by thread: [SECURITY] [DLA 3923-1] php-horde-turba security update
Index(es):
- Date
- Thread

	
		OSZAR »