The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apache 1.3.35 Released

Discussion in 'EasyApache' started by alex2k, May 5, 2006.

  1. alex2k

    alex2k Active Member

    Joined:
    Sep 10, 2001
    Messages:
    41
    Likes Received:
    0
    Trophy Points:
    6
    Apache 1.3.35 Major changes

    Security vulnerabilities

    The main security vulnerabilities addressed in 1.3.35 are:

    CVE-2005-3352 (cve.mitre.org)
    mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT

    New features

    New features that relate to all platforms:
    • core: Allow usage of the "Include" configuration directive within previously "Include"d files.
    New features that relate to specific platforms:
    • None
    Bugs fixed

    The following bugs were found in Apache 1.3.34 (or earlier) and have been fixed in Apache 1.3.35:
    • HTML-escape the Expect error message.
    • mod_cgi: Remove block on OPTIONS method so that scripts can respond to OPTIONS directly rather than via server default



    So, when it's available in cPanel?
     
  2. tweakservers

    tweakservers Well-Known Member

    Joined:
    Mar 30, 2006
    Messages:
    379
    Likes Received:
    0
    Trophy Points:
    16
  3. fleksi

    fleksi Well-Known Member

    Joined:
    Sep 17, 2003
    Messages:
    125
    Likes Received:
    0
    Trophy Points:
    16
    Yes, latest Buildapache.sea has been updated on Thu May 4 18:02:45 2006, but still version 1.3.34.
    When apache 1.3.35 will be available in cPanel?

    -FL-
     
    #3 fleksi, May 7, 2006
    Last edited: May 7, 2006
Loading...

Share This Page