apache2 update for semi-critical "optionsbleed" bug
Robie Basak
robie.basak at ubuntu.com
Wed Sep 20 22:35:36 UTC 2017
On Tue, Sep 19, 2017 at 10:30:20AM -0400, Glen Willmot wrote:
> Just curious on when we'll see an update on the apache2 release to
> version 2.4.28 to patch against the "Optionsbleed" bug detailed by
> CVE-2017-9798.
Already done, but by backporting the fix (as usual for Linux
distributions) rather than updating to 2.4.28.
See:
https://usn.ubuntu.com/usn/usn-3425-1/
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9798.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-devel-discuss/attachments/20170920/2a65363e/attachment.sig>
More information about the Ubuntu-devel-discuss
mailing list