* [PATCH] apache: Update to 2.4.49
@ 2021-09-18 13:47 Matthias Fischer
2021-09-18 16:08 ` Peter Müller
0 siblings, 1 reply; 2+ messages in thread
From: Matthias Fischer @ 2021-09-18 13:47 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 674 bytes --]
For details see:
https://dlcdn.apache.org//httpd/CHANGES_2.4.49
Signed-off-by: Matthias Fischer <matthias.fischer(a)ipfire.org>
---
lfs/apache2 | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/lfs/apache2 b/lfs/apache2
index ff9de7eb7..e63489e8f 100644
--- a/lfs/apache2
+++ b/lfs/apache2
@@ -25,7 +25,7 @@
include Config
-VER = 2.4.48
+VER = 2.4.49
THISAPP = httpd-$(VER)
DL_FILE = $(THISAPP).tar.bz2
@@ -45,7 +45,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = a7088cec171b0d00bf43394ce64d3909
+$(DL_FILE)_MD5 = f294efbeabcf6027fccc7983a6daa55f
install : $(TARGET)
--
2.18.0
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [PATCH] apache: Update to 2.4.49
2021-09-18 13:47 [PATCH] apache: Update to 2.4.49 Matthias Fischer
@ 2021-09-18 16:08 ` Peter Müller
0 siblings, 0 replies; 2+ messages in thread
From: Peter Müller @ 2021-09-18 16:08 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 1245 bytes --]
Hi Matthias,
thanks for submitting this.
Skimming through https://httpd.apache.org/security/vulnerabilities_24.html, I think IPFire is
vulnerable to CVE-2021-34798 ("moderate: NULL pointer dereference in httpd core") only. CVE-2021-39275
would require 3rd party modules, which we don't use, and the rest applies to mod_proxy, which
we don't use either IMHO.
Reviewed-by: Peter Müller <peter.mueller(a)ipfire.org>
Thanks, and best regards,
Peter Müller
> For details see:
> https://dlcdn.apache.org//httpd/CHANGES_2.4.49
>
> Signed-off-by: Matthias Fischer <matthias.fischer(a)ipfire.org>
> ---
> lfs/apache2 | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/lfs/apache2 b/lfs/apache2
> index ff9de7eb7..e63489e8f 100644
> --- a/lfs/apache2
> +++ b/lfs/apache2
> @@ -25,7 +25,7 @@
>
> include Config
>
> -VER = 2.4.48
> +VER = 2.4.49
>
> THISAPP = httpd-$(VER)
> DL_FILE = $(THISAPP).tar.bz2
> @@ -45,7 +45,7 @@ objects = $(DL_FILE)
>
> $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
>
> -$(DL_FILE)_MD5 = a7088cec171b0d00bf43394ce64d3909
> +$(DL_FILE)_MD5 = f294efbeabcf6027fccc7983a6daa55f
>
> install : $(TARGET)
>
>
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-09-18 16:08 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-09-18 13:47 [PATCH] apache: Update to 2.4.49 Matthias Fischer
2021-09-18 16:08 ` Peter Müller
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox