Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware64-14.2 ChangeLog (2021-09-17) ====== ====== Fri Sep 17 04:17:57 UTC 2021 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware64.14.2>patches/packages/httpd-2.4.49-x86_64-1_slack14.2.txz]] \\ This release contains security fixes and improvements. \\ mod_proxy: Server Side Request Forgery (SSRF) vulnerabilty [Yann Ylavic] \\ core: ap_escape_quotes buffer overflow \\ mod_proxy_uwsgi: Out of bound read vulnerability [Yann Ylavic] \\ core: null pointer dereference on malformed request \\ mod_http2: Request splitting vulnerability with mod_proxy [Stefan Eissing] \\ For more information, see: \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40438 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39275 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36160 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34798 \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33193 \\ (* Security fix *) {{tag>slackware changelog slackware64-14.2 2021-09}} news/2021/09/17/slackware64-14.2-changelog.txt Last modified: 3 years agoby Giuseppe Di Terlizzi Log In