Don’t freak: It’s got nothing to do with Log4Shell, except it may be just as far-reaching as Log4j, given HTTPD’s tendency to tiptoe into software projects. Don’t duck at the latest mention of Apache: ...
[Hanno Böck] recently uncovered a vulnerability in Apache webserver, affecting Apache HTTP Server 2.2.x through 2.2.34 and 2.4.x through 2.4.27. This bug only affects Apache servers with a certain ...
A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security researchers, and at least one U.S. state government has issued an emergency ...
Apache Software Foundation has released HTTP Web Server 2.4.51 after researchers discovered that a previous security update didn't correctly fix an actively exploited vulnerability. Apache HTTP Server ...
The Apache Software Foundation has released version 2.4.50 of the HTTP Web Server to address two vulnerabilities, one of which is an actively exploited path traversal and file disclosure flaw. The ...
Community driven content discussing all aspects of software development from DevOps to design patterns. The most common problem DevOps developers and system administrators encounter when they install ...
VMware Labs has unveiled an extension module for Apache’s popular web server that runs WebAssembly binaries, opening new possibilities for languages and projects to run securely in Apache. The ...