[Bug 258988] [PATCH] www/apache24 - Critical: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) (CVE-2021-42013)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 258988] [PATCH] www/apache34 - ritical: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) (CVE-2021-42013)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 07 Oct 2021 17:11:29 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=258988

--- Comment #1 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/ports/commit/?id=e721865a668c739dc5be7f15790024682bbc1dda

commit e721865a668c739dc5be7f15790024682bbc1dda
Author:     Cy Schubert <cy@FreeBSD.org>
AuthorDate: 2021-10-07 17:02:52 +0000
Commit:     Cy Schubert <cy@FreeBSD.org>
CommitDate: 2021-10-07 17:05:28 +0000

    www/apache24: Update to 2.4.51

    Fixes: critical: Path Traversal and Remote Code Execution in Apache
    HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
    (CVE-2021-42013)

    PR:             258988
    MFH:            2021Q4
    Security:       CVE-2021-41773, CVE-2021-42013

 www/apache24/Makefile | 2 +-
 www/apache24/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

-- 
You are receiving this mail because:
You are on the CC list for the bug.
You are the assignee for the bug.