httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From olli hauer <>
Subject Re: Apache 2.2.28 release timing.
Date Tue, 05 Aug 2014 20:04:16 GMT
On 2014-08-05 15:21, Mark Blackman wrote:
> Hi,
> This might be more of user than dev question, but as the discussions about 
> timing were here, I’ll go with here.
> suggested the 2.2.28 tagging and presumably release is imminent,  
> however, is still a 404.
> I understand the mechanics of open source projects, so this is not a “hurry-up”,

> it’s just a "can I get Apache 2.2.28 into my next hosting platform release or not”,

> the contents of which will be frozen on Aug. 15.
> I’m mostly interested in the CVE updates, so I can tell users we’re clear of them.

> If the 2.2.28 release is not likely before Aug. 15, that’s fine, I just wanted to be
> Cheers,
> Mark

Hi Mark,

I suspect almost all distributions ship already patched the Apache 2.2 packages/ports.

In case you build Apache yourself just use the patches from the upstream SVN,

Or from the FreeBSD svn as set of three patch files:

I hope the list of CVE patches is complete, else I'm happy to get additional hints from the
Apache devs to integrate missing fixes.


View raw message