Slackware64-14.0 ChangeLog (2023-03-08)
Wed Mar 8 20:26:54 UTC 2023
Packages
Upgraded
- patches/packages/httpd-2.4.56-x86_64-1_slack14.0.txz
This update fixes two security issues:
HTTP Response Smuggling vulnerability via mod_proxy_uwsgi.
HTTP Request Smuggling attack via mod_rewrite and mod_proxy.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.56
https://www.cve.org/CVERecord?id=CVE-2023-27522
https://www.cve.org/CVERecord?id=CVE-2023-25690
(* Security fix *)