[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
branch master updated: gnu: Apache httpd: Update to 2.4.50 [Fixes CVE-20
|
From: |
guix-commits |
|
Subject: |
branch master updated: gnu: Apache httpd: Update to 2.4.50 [Fixes CVE-2021-{41524, 41773}]. |
|
Date: |
Wed, 06 Oct 2021 00:06:40 -0400 |
This is an automated email from the git hooks/post-receive script.
lfam pushed a commit to branch master
in repository guix.
The following commit(s) were added to refs/heads/master by this push:
new f868ed2 gnu: Apache httpd: Update to 2.4.50 [Fixes
CVE-2021-{41524,41773}].
f868ed2 is described below
commit f868ed2a75b55400107b80fcc1e41dcfb6b3c28c
Author: Leo Famulari <leo@famulari.name>
AuthorDate: Tue Oct 5 20:50:19 2021 -0400
gnu: Apache httpd: Update to 2.4.50 [Fixes CVE-2021-{41524,41773}].
This update includes an important fix for an actively exploited path
traversal
vulnerability (CVE-2021-41773), which allows attackers to access files
outside
the "document root":
https://httpd.apache.org/security/vulnerabilities_24.html
* gnu/packages/web.scm (httpd): Update to 2.4.50.
---
gnu/packages/web.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/web.scm b/gnu/packages/web.scm
index 0ea362c..5819973 100644
--- a/gnu/packages/web.scm
+++ b/gnu/packages/web.scm
@@ -252,14 +252,14 @@
(define-public httpd
(package
(name "httpd")
- (version "2.4.49")
+ (version "2.4.50")
(source (origin
(method url-fetch)
(uri (string-append "mirror://apache/httpd/httpd-"
version ".tar.bz2"))
(sha256
(base32
- "0fqkfjcpdd40ji2279wfxh5hddb5jdxlnpjr0sbhva8fi7b6bfb5"))))
+ "03w9nc7v0rqljxazikbrlgbw7lq72i8n7n9ynlp6h1n6f301fa3a"))))
(build-system gnu-build-system)
(native-inputs `(("pcre" ,pcre "bin"))) ;for 'pcre-config'
(inputs `(("apr" ,apr)
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- branch master updated: gnu: Apache httpd: Update to 2.4.50 [Fixes CVE-2021-{41524, 41773}].,
guix-commits <=