| Written by Mario
|
|
|
If you need to contact us write an email to [email protected] and we will answer
as soons as possible.
|
| Release of Apache 2.4.54 Updated OpenSSL 1.1.1s, 3.0.7 or LibreSSL 3.6.1 |
| Written by TrustyHausBot |
| Sat, 05 Nov 2022 15:56:37 GMT |
This release includes:
APR Version: 1.7.0
APU Version: 1.6.1
Brotli Version: 1.0.9
Expat Version: 2.5.0
Jansson Version: 2.14
Libcurl Version: 7.86.0
LibXML2 Version: 2.10.3
LUA Version: 5.2.4
NGHTTP2 Version: 1.50.0
OpenSSL Version: 1.1.1s, 3.0.7 or LibreSSL 3.6.1
PCRE2 Version: 10.40
SQLite3 Version: 3.39.4
ZLib Version: 1.2.13
You can get your copy of the new Apache HTTP Server from our [url="http://www.apachehaus.com/cgi-bin/downloa...
Read more
|
| Apache 2.4.54 with OpenSSL 3.0.5 released |
| Written by TrustyHausBot |
| Thu, 28 Jul 2022 21:10:58 GMT |
We have released Apache 2.4.54 with OpenSSL 3.0.5.
Apache versions with OpenSSL 3.0 and above will only be released in x64, there will be no 32 bit (x86) releases.
There are known problems with OpenSSL 3.0 which are;
* Current versions of PHP will not run as a module. Use mod_fcgid to run PHP.
* OpenSSL 3.0 does not allow ciphers considered weak. If you need to use them for compatibility issues, stay with OpenSSL 1.1.1.
* I have found that mod_session_crypto does not work....
Read more
|
| Apache 2.4.54 with OpenSSL 1.1.1p released |
| Written by TrustyHausBot |
| Fri, 24 Jun 2022 01:55:46 GMT |
OpenSSL changes between 1.1.1o and 1.1.1p [21 Jun 2022]
*) In addition to the c_rehash shell command injection identified in
CVE-2022-1292, further bugs where the c_rehash script does not
properly sanitise shell metacharacters to prevent command injection have been
fixed.
When the CVE-2022-1292 was fixed it was not discovered that there
are other places in the script where the file names of certificates
being hashed were possibly passed to a command executed t...
Read more
|
|
