Package "libapache2-mod-proxy-uwsgi"

Name: libapache2-mod-proxy-uwsgi


transitional package

Latest version: 2.4.48-3.1ubuntu3
Release: impish (21.10)
Level: base
Repository: universe
Head package: apache2
Homepage: https://httpd.apache.org/


Download "libapache2-mod-proxy-uwsgi"

Other versions of "libapache2-mod-proxy-uwsgi" in Impish

Repository Area Version
security universe 2.4.48-3.1ubuntu3.5
updates universe 2.4.48-3.1ubuntu3.5


Version: 2.4.48-3.1ubuntu3 2021-10-10 09:06:33 UTC

  apache2 (2.4.48-3.1ubuntu3) impish; urgency=medium

  * SECURITY REGRESSION: Issues in UDS URIs (LP: #1945311)
    - debian/patches/CVE-2021-40438-2.patch: Fix UDS unix: scheme for P
      rules in modules/mappers/mod_rewrite.c.
    - debian/patches/CVE-2021-40438-3.patch: Handle UDS URIs with empty
      hostname in modules/mappers/mod_rewrite.c,

 -- Marc Deslauriers <email address hidden> Tue, 28 Sep 2021 08:52:26 -0400

1945311 Fix for CVE-2021-40438 breaks existing configs
CVE-2021-40438 A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP

About   -   Send Feedback to @ubuntu_updates