[Bug 1945311] Re: Fix for CVE-2021-40438 breaks existing configs

Launchpad Bug Tracker Sun, 10 Oct 2021 00:41:01 -0700

This bug was fixed in the package apache2 - 2.4.48-3.1ubuntu3

---------------
apache2 (2.4.48-3.1ubuntu3) impish; urgency=medium


  * SECURITY REGRESSION: Issues in UDS URIs (LP: #1945311)
    - debian/patches/CVE-2021-40438-2.patch: Fix UDS unix: scheme for P
      rules in modules/mappers/mod_rewrite.c.
    - debian/patches/CVE-2021-40438-3.patch: Handle UDS URIs with empty
      hostname in modules/mappers/mod_rewrite.c,
      modules/proxy/proxy_util.c.

 -- Marc Deslauriers <marc.deslauri...@ubuntu.com>  Tue, 28 Sep 2021
08:52:26 -0400

** Changed in: apache2 (Ubuntu Impish)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1945311

Title:
  Fix for CVE-2021-40438 breaks existing configs

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1945311/+subscriptions


-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1945311] Re: Fix for CVE-2021-40438 breaks existing configs

Reply via email to