httpd-docs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <>
Subject [Httpd Wiki] Update of "CVE-2011-3192" by wrowe
Date Wed, 14 Sep 2011 06:55:52 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Httpd Wiki" for change notification.

The "CVE-2011-3192" page has been changed by wrowe:

+ The official version of this document resides at []
- this document is for drafting and discussion of the workarounds and side effects upon clients.
            Apache HTTPD Security ADVISORY
- DRAFT           UPDATE 3 - FINAL            DRAFT
  Title:       Range header DoS vulnerability Apache HTTPD prior to 2.2.20.
@@ -103, +104 @@

  This vulnerability has been fixed in release 2.2.20 and further corrected
  in 2.2.21. You are advised to upgrade to version 2.2.21 (or newer) or the
+ legacy 2.0.65 release, once this is published (anticipated in September).
- legacy 2.0.65 release, once these are published.  The 2.2.21 package is
- currently undergoing review, and a 2.0.65 package is also expected during
- this month.
  If you cannot upgrade, or cannot wait to upgrade - you can apply the 
  appropriate source code patch and recompile a recent existing version;

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message