-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2013-1661 2013-02-01 15:45:39 --------------------------------------------------------------------------------
Name : httpd Product : Fedora 17 Version : 2.2.23 Release : 1.fc17 URL : http://httpd.apache.org/ Summary : Apache HTTP Server Description : The Apache HTTP Server is a powerful, efficient, and extensible web server. -------------------------------------------------------------------------------- Update Information: This update contains the 2.2.23 release of the Apache HTTP Server. http://www.eu.apache.org/dist/httpd/CHANGES_2.2.23 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 29 2013 Jan Kaluza <[email protected]> - 2.2.23-1 - update to 2.2.23 -------------------------------------------------------------------------------- References: [ 1 ] Bug #850794 - CVE-2012-2687 CVE-2008-0455 httpd: mod_negotiation XSS via untrusted file names in directories with MultiViews enabled https://bugzilla.redhat.com/show_bug.cgi?id=850794 [ 2 ] Bug #813559 - CVE-2012-0883 httpd: insecure handling of LD_LIBRARY_PATH in envvars https://bugzilla.redhat.com/show_bug.cgi?id=813559 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update httpd' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
