Subscribe: Apache | Announce
http://www.gossamer-threads.com/lists/apache/announce.xml
Preview: Apache | Announce

Apache | Announce



Mailing List Archive by Gossamer Threads



Last Build Date: 20 Jul 2017 19:09:47 -0800

Copyright: (c) Gossamer Threads Inc. All rights reserved.
 



CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest

13 Jul 2017 06:00:32 -0800

CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest Severity: Important Vendor: The Apache Software Foundation Versions Affected: all



CVE-2017-9789: Apache httpd 2.4 Read after free in mod_http2

13 Jul 2017 05:56:49 -0800

CVE-2017-9789: Read after free in mod_http2.c Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.4.26 Descripti



[Announcement] Apache HTTP Server 2.2.34 Released

11 Jul 2017 08:33:01 -0800

July 11, 2017 The Apache Software Foundation and the Apache HTTP Server Project announce the release of version 2.2.34 of the Apache HTTP Serve



[ANNOUNCEMENT] Apache HTTP Server 2.4.27 Released

11 Jul 2017 06:06:14 -0800

Apache HTTP Server 2.4.27 Released July 11, 2017 The Apache Software Foundation and the Apache HTTP Server Project are pleased to announce the relea



[SECURITY] CVE-2017-7679: mod_mime buffer overread

19 Jun 2017 15:48:59 -0800

CVE-2017-7679: mod_mime buffer overread Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.2.0 to 2.2.32 httpd 2



[SECURITY] CVE-2017-7668: ap_find_token buffer overread

19 Jun 2017 15:48:54 -0800

CVE-2017-7668: ap_find_token buffer overread Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.2.32 httpd 2.4.2



[SECURITY] CVE-2017-7659: mod_http2 null pointer dereference

19 Jun 2017 15:48:47 -0800

CVE-2017-7659: mod_http2 null pointer dereference Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.4.24 (unrel



[SECURITY] CVE-2017-3169: mod_ssl null pointer dereference

19 Jun 2017 15:48:40 -0800

CVE-2017-3169: mod_ssl null pointer dereference Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.2.0 to 2.2.32



[SECURITY] CVE-2017-3167: ap_get_basic_auth_pw authentication bypass

19 Jun 2017 15:48:33 -0800

CVE-2017-3167: ap_get_basic_auth_pw authentication bypass Severity: Important Vendor: The Apache Software Foundation Versions Affected: httpd 2.2.0



[ANNOUNCE] Apache HTTP Server 2.4.26 Released

19 Jun 2017 06:02:52 -0800

Apache HTTP Server 2.4.26 Released June 19, 2017 The Apache Software Foundation and the Apache HTTP Server Project are pleased to announce