announce@httpd.apache.org, 2017-06

You are viewing a plain text version of this content. The canonical link for it is here.

- [ANNOUNCE] Apache HTTP Server 2.4.26 Released - posted by Jim Jagielski <ji...@apache.org> on 2017/06/19 13:02:52 UTC, 0 replies.
- [SECURITY] CVE-2017-3167: ap_get_basic_auth_pw authentication bypass - posted by Jacob Champion <jc...@apache.org> on 2017/06/19 22:48:33 UTC, 0 replies.
- [SECURITY] CVE-2017-3169: mod_ssl null pointer dereference - posted by Jacob Champion <jc...@apache.org> on 2017/06/19 22:48:40 UTC, 0 replies.
- [SECURITY] CVE-2017-7659: mod_http2 null pointer dereference - posted by Jacob Champion <jc...@apache.org> on 2017/06/19 22:48:47 UTC, 0 replies.
- [SECURITY] CVE-2017-7668: ap_find_token buffer overread - posted by Jacob Champion <jc...@apache.org> on 2017/06/19 22:48:54 UTC, 0 replies.
- [SECURITY] CVE-2017-7679: mod_mime buffer overread - posted by Jacob Champion <jc...@apache.org> on 2017/06/19 22:48:59 UTC, 0 replies.