DaemonForums - View Single Post - Apache HTTPClient 4.1.1 fixes critical security bug

Thread: Apache HTTPClient 4.1.1 fixes critical security bug

View Single Post

#1 (View Single Post)

Old

23rd March 2011

J65nko

J65nko is offline

Administrator

Join Date: May 2008

Location: Budel - the Netherlands

Posts: 4,131

Default

Apache HTTPClient 4.1.1 fixes critical security bug

From http://www.h-online.com/security/new...g-1211558.html

Quote:

The Apache HTTPClient library has been updated to version 4.1.1 to close a critical bug in the library which sent the Proxy-Authorization header on to hosts when tunnelling through proxy servers which required authentication.

__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump

Reply With Quote