Apache http server release 2.4.48
The release of the Apache HTTP server 2.4.48 has been published (release 2.4.47 was skipped), which introduces 39 changes and eliminates 8 vulnerabilities: CVE-2021-30641 - incorrect operation of the section in 'MergeSlashes OFF' mode; CVE-2020-35452 - Single null byte stack overflow in mod_auth_digest; CVE-2021-31618, CVE-2020-26691, CVE-2020-26690, CVE-2020-13950 - NULL pointer dereferences in mod_http2, mod_session and mod_proxy_http; CVE-2020-13938 - possibility of stopping […]