On Mon 3 Apr 2023, at 16:28, Gareth Evans wrote:
> On Mon 3 Apr 2023, at 13:27, Harald Dunkel wrote:
>> Hi folks,
>>
>> AFAIU apache2 2.4.56-1 has been included in Bullseye to mitigate
>> CVE-2023-27522 and CVE-2023-25690 (both some mod_proxy issue
>> with high severity). Good thing.
>>
>> Unfo
On Mon 3 Apr 2023, at 13:27, Harald Dunkel wrote:
> Hi folks,
>
> AFAIU apache2 2.4.56-1 has been included in Bullseye to mitigate
> CVE-2023-27522 and CVE-2023-25690 (both some mod_proxy issue
> with high severity). Good thing.
>
> Unfortunately this introduced 2 regressions for mod_rewrite and
On 2023-04-03 15:59:15 +0200, Harald Dunkel wrote:
> On 2023-04-03 14:49:16, Vincent Lefevre wrote:
> >
> > What about apache2 2.4.56-2?
>
> This version is not in Bullseye. Only 2.4.56-1, introducing
> the regressions.
If you're talking about Bullseye, 2.4.56-1 isn't in Bullseye either.
It is 2
On 2023-04-03 14:49:16, Vincent Lefevre wrote:
What about apache2 2.4.56-2?
This version is not in Bullseye. Only 2.4.56-1, introducing
the regressions.
Hi,
On 2023-04-03 14:27:48 +0200, Harald Dunkel wrote:
> AFAIU apache2 2.4.56-1 has been included in Bullseye to mitigate
> CVE-2023-27522 and CVE-2023-25690 (both some mod_proxy issue
> with high severity). Good thing.
>
> Unfortunately this introduced 2 regressions for mod_rewrite and
> http2,
Hi folks,
AFAIU apache2 2.4.56-1 has been included in Bullseye to mitigate
CVE-2023-27522 and CVE-2023-25690 (both some mod_proxy issue
with high severity). Good thing.
Unfortunately this introduced 2 regressions for mod_rewrite and
http2, see
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1
6 matches
Mail list logo
