| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 03 Aug 2006 02:05:21 -0700
From: "Philip M. Gollucci" <pgollucci@...7g8.com>
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com,
dev@...pd.apache.org
Subject: Re: [Announcement] Apache HTTP Server 2.2.3
(2.0.59, 1.3.37) Released
William A. Rowe, Jr. wrote:
> Apache HTTP Server 2.2.3 Released
>
> The Apache Software Foundation and The Apache HTTP Server Project are
> pleased to announce the release of version 2.2.3 of the Apache HTTP Server
> ("Apache").
>
> This version of Apache is principally a bug and security fix release. The
> following potential security flaws are addressed;
>
> CVE-2006-3747: An off-by-one flaw exists in the Rewrite module,
> mod_rewrite, as shipped with Apache 1.3 since 1.3.28, 2.0 since 2.0.46,
> and 2.2 since 2.2.0.
Is a release in the 2.0.x (2.0.59) soon to follow ?
--
------------------------------------------------------------------------
Philip M. Gollucci (pgollucci@...7g8.com) 323.219.4708
Consultant / http://p6m7g8.net/Resume/resume.shtml
Senior Software Engineer - TicketMaster - http://ticketmaster.com
1024D/A79997FA F357 0FDD 2301 6296 690F 6A47 D55A 7172 A799 97F
"In all that I've done wrong I know I must have done something right to
deserve a hug every morning and butterfly kisses at night."
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists