FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Apache httpd -- Multiple vulnerabilities

Affected packages
2.4.49	<=	apache24	<	2.4.50

Details

VuXML ID	25b78bdd-25b8-11ec-a341-d4c9ef517024
Discovery	2021-10-05
Entry	2021-10-05
Modified	2021-10-06

The Apache http server project reports:

moderate: null pointer dereference in h2 fuzzing (CVE-2021-41524)

important: Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 (CVE-2021-41773)

[source]

References

CVE Name	CVE-2021-41524
CVE Name	CVE-2021-41773
URL	https://httpd.apache.org/security/vulnerabilities_24.html