Welcome to our website
To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.
Apache 2.2.21 for CentOS 5
Posted by Philipp Esselbach on: 09/14/2011 05:55 PM [ Print | 0 comment(s) ]
CentALT has released Apache 2.2.21 packages for CentOS 5
Changes with Apache 2.2.21
*) SECURITY: CVE-2011-3348 (cve.mitre.org)
mod_proxy_ajp: Respond with HTTP_NOT_IMPLEMENTED when the method is not
recognized. [Jean-Frederic Clere]
*) Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20.
PR 51748. [<lowprio20 gmail.com>]
*) mod_filter: Instead of dropping the Accept-Ranges header when a filter
registered with AP_FILTER_PROTO_NO_BYTERANGE is present,
set the header value to "none". [Eric Covener, Ruediger Pluem]
*) mod_proxy_ajp: Ignore flushing if headers have not been sent.
PR 51608 [Ruediger Pluem]
*) mod_dav_fs: Fix segfault if apr DBM driver cannot be loaded. PR 51751.
[Stefan Fritsch]
*) mod_alias: Adjust log severity of "incomplete redirection target"
message. PR 44020.
*) mod_rewrite: Check validity of each internal (int
RewriteMap even if the
RewriteEngine is disabled in server context, avoiding a crash while
referencing the invalid int: map at runtime. PR 50994.
[Ben Noordhuis <info noordhuis nl>]
*) core: Allow MaxRanges none|unlimited|default and set 'Accept-Ranges: none'
in the case Ranges are being ignored with MaxRanges none.
[Eric Covener]
*) mod_proxy_ajp: Respect "reuse" flag in END_REPONSE packets.
[Rainer Jung]
*) SECURITY: CVE-2011-3348 (cve.mitre.org)
mod_proxy_ajp: Respond with HTTP_NOT_IMPLEMENTED when the method is not
recognized. [Jean-Frederic Clere]
*) Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20.
PR 51748. [<lowprio20 gmail.com>]
*) mod_filter: Instead of dropping the Accept-Ranges header when a filter
registered with AP_FILTER_PROTO_NO_BYTERANGE is present,
set the header value to "none". [Eric Covener, Ruediger Pluem]
*) mod_proxy_ajp: Ignore flushing if headers have not been sent.
PR 51608 [Ruediger Pluem]
*) mod_dav_fs: Fix segfault if apr DBM driver cannot be loaded. PR 51751.
[Stefan Fritsch]
*) mod_alias: Adjust log severity of "incomplete redirection target"
message. PR 44020.
*) mod_rewrite: Check validity of each internal (int
RewriteMap even if theRewriteEngine is disabled in server context, avoiding a crash while
referencing the invalid int: map at runtime. PR 50994.
[Ben Noordhuis <info noordhuis nl>]
*) core: Allow MaxRanges none|unlimited|default and set 'Accept-Ranges: none'
in the case Ranges are being ignored with MaxRanges none.
[Eric Covener]
*) mod_proxy_ajp: Respect "reuse" flag in END_REPONSE packets.
[Rainer Jung]
You can download the packages here or over the CentALT Repository:
For i386:
For x86_64:
Related Stories
08/31/2011 01:33 PM: Apache 2.2.20 for CentOS 5 by Philipp Esselbach
CentALT just released Apache 2.2.20 packages (incl. ITK) for CentOS 5...
03/01/2011 09:58 AM: How To Install Apache 2 with SSL on Linux (with mod_ssl, openssl) by Philipp Esselbach
The Geek Stuff posted a tutorial about installing Apache 2 with SSL on Linux...
02/02/2011 07:56 PM: Hosting Multiple SSL Web Sites On One IP Address With Apache 2.2 And GnuTLS (Debian Lenny) by Philipp Esselbach
Howtoforge posted a tutorial about hosting multiple SSL web sites on one IP address with Apache 2.2 and GnuTLS...
01/11/2011 10:23 AM: UNIX / Linux: How to Install and Configure mod_perl for Apache 2 by Philipp Esselbach
The Geek Stuff shows you how to install and configure mod_perl for Apache 2...
12/06/2005 05:52 PM: USN-225-1: Apache 2 vulnerability by Bob
A new Apache 2 vulnerability update is available for Ubuntu Linux. Here the announcement:...
09/07/2005 04:06 AM: USN-177-1: Apache 2 vulnerabilities by Bob
A new Apache 2 vulnerabilities update is available for Ubuntu Linux. Here the announcement:...
08/25/2005 04:58 AM: GLSA 200508-15 Apache 2.0: Denial of Service vulnerability by Bob
A new security update has been released for Gentoo Linux - Apache 2.0: Denial of Service vulnerability. Here the announcement:...
08/04/2005 10:20 AM: USN-160-1: Apache 2 vulnerabilities by Philipp Esselbach
An Apache 2 update has been released for Ubuntu Linux ========================================================== Ubuntu Security Notice USN-160-1 August 04, 2005 apache2 vulnerabilities CAN-2005-...
05/06/2005 04:54 AM: USN-120-1: Apache 2 vulnerability by Philipp Esselbach
Apache 2 security updates have been released for Ubuntu Linux 4.10 and 5.04 ========================================================== Ubuntu Security Notice USN-120-1 May 06, 2005 apache2 vul...
11/10/2004 04:19 PM: GLSA 200411-18: Apache 2.0: Denial of Service by Philipp Esselbach
An Apache 2.0 security update is available for Gentoo Linux - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 20041...
CentALT just released Apache 2.2.20 packages (incl. ITK) for CentOS 5...
03/01/2011 09:58 AM: How To Install Apache 2 with SSL on Linux (with mod_ssl, openssl) by Philipp Esselbach
The Geek Stuff posted a tutorial about installing Apache 2 with SSL on Linux...
02/02/2011 07:56 PM: Hosting Multiple SSL Web Sites On One IP Address With Apache 2.2 And GnuTLS (Debian Lenny) by Philipp Esselbach
Howtoforge posted a tutorial about hosting multiple SSL web sites on one IP address with Apache 2.2 and GnuTLS...
01/11/2011 10:23 AM: UNIX / Linux: How to Install and Configure mod_perl for Apache 2 by Philipp Esselbach
The Geek Stuff shows you how to install and configure mod_perl for Apache 2...
12/06/2005 05:52 PM: USN-225-1: Apache 2 vulnerability by Bob
A new Apache 2 vulnerability update is available for Ubuntu Linux. Here the announcement:...
09/07/2005 04:06 AM: USN-177-1: Apache 2 vulnerabilities by Bob
A new Apache 2 vulnerabilities update is available for Ubuntu Linux. Here the announcement:...
08/25/2005 04:58 AM: GLSA 200508-15 Apache 2.0: Denial of Service vulnerability by Bob
A new security update has been released for Gentoo Linux - Apache 2.0: Denial of Service vulnerability. Here the announcement:...
08/04/2005 10:20 AM: USN-160-1: Apache 2 vulnerabilities by Philipp Esselbach
An Apache 2 update has been released for Ubuntu Linux ========================================================== Ubuntu Security Notice USN-160-1 August 04, 2005 apache2 vulnerabilities CAN-2005-...
05/06/2005 04:54 AM: USN-120-1: Apache 2 vulnerability by Philipp Esselbach
Apache 2 security updates have been released for Ubuntu Linux 4.10 and 5.04 ========================================================== Ubuntu Security Notice USN-120-1 May 06, 2005 apache2 vul...
11/10/2004 04:19 PM: GLSA 200411-18: Apache 2.0: Denial of Service by Philipp Esselbach
An Apache 2.0 security update is available for Gentoo Linux - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 20041...