View Single Post
  #1   (View Single Post)  
Old 14th September 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default Another Apache update due to byte range flaw

From http://h-online.com/-1343066

Quote:
The Apache Foundation has announced that the newly released version 2.2.21 of its free web server is essentially a bug fix and security release. In particular, the developers focused on the vulnerability that makes servers susceptible to Denial-of-Service (DoS) attacks.

The new version corrects and complements the first fix, which was released only two weeks ago. It corrects an incompatibility with the HTTP definition and changes the interpretation of the MaxRange directive. It also fixes flaws in mod_proxy_ajp, a module that provides support for the Apache JServ protocol.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote