[Bug 258988] [PATCH] www/apache24 - Critical: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) (CVE-2021-42013)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 258988] [PATCH] www/apache34 - ritical: Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) (CVE-2021-42013)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 07 Oct 2021 17:24:32 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=258988

--- Comment #2 from commit-hook@FreeBSD.org ---
A commit in branch 2021Q4 references this bug:

URL:
https://cgit.FreeBSD.org/ports/commit/?id=185f1181c2d943d77f0c84abf0a4fed9f236e7f9

commit 185f1181c2d943d77f0c84abf0a4fed9f236e7f9
Author:     Cy Schubert <cy@FreeBSD.org>
AuthorDate: 2021-10-07 17:02:52 +0000
Commit:     Cy Schubert <cy@FreeBSD.org>
CommitDate: 2021-10-07 17:23:53 +0000

    www/apache24: Update to 2.4.51

    Fixes: critical: Path Traversal and Remote Code Execution in Apache
    HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
    (CVE-2021-42013)

    PR:             258988
    Security:       CVE-2021-41773, CVE-2021-42013
    (cherry picked from commit e721865a668c739dc5be7f15790024682bbc1dda)

 www/apache24/Makefile | 2 +-
 www/apache24/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.