[v2.3] Vulnerability in Apache < 2.4.4, 2.2.24 allows cross-site scripting
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4558
Solution:
- Upgrade to 2.4.4 (v2.5)
- Upgrade to 2.2.24 (v2.4 and below)
(from redmine: issue id 1670, created on 2013-03-19, closed on 2013-04-12)
- Changesets:
- Revision 04bea357 by Natanael Copa on 2013-04-11T16:52:39Z:
main/apache2: security upgrade to 2.2.24 (CVE-2012-3499,CVE-2012-4558)
fixes #1670