DoS: Apache 1.3 all versions including 1.3.24, Apache 2 all versions up to 2.0.36

Wes Sheldahl wsheldahl at qx.net
Tue Jun 18 16:29:54 PDT 2002


On Tue, Jun 18, 2002 at 03:06:15AM -0700, Jesse Tie-Ten-Quee wrote:
> Yo,
> 
> http://httpd.apache.org/info/security_bulletin_20020617.txt
> 
[ snip ]
> 
> No patches or new releases yet, afaik.
 
 Apache 1.3.26 became available a couple hours ago at the usual
 location on http://httpd.apache.org. I believe it addresses the
 vulnerability. (They skipped 1.3.25, for those keeping score.)

 Congrats to the Apache team for their quick turnaround!

-- 
Wes Sheldahl
wsheldahl at qx.net
-- 
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe lfs-security' in the subject header of the message



More information about the lfs-security mailing list