Apache HTTP Server 2.4 vulnerabilities - The Apache HTTP Server Project

This page lists all security vulnerabilities fixed in released versions of Apache HTTP Server 2.4. Each vulnerability is given a security impact rating by the Apache security team - please note that this rating may well vary from platform to platform. We also list the versions the flaw is known to affect, and where a flaw has not been verified list the version with a question mark. Please note tha

[defiant]

Apache HTTP Server 2.4.56。mod_rewrite と mod_proxy の方は結構影響でかそう。

[tanupig]

with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges 、mod_auth_digest

[matsumoto_r]

“Fixed in Apache httpd 2.4.10”

[labunix]

2.4.3 Update Released: 21st August 2012