[Server-devel] Apache 2.4.6 on CentOS and 2.4.10 on Debian/Raspbian
Peter Robinson
pbrobinson at gmail.com
Fri May 26 04:44:37 EDT 2017
On Fri, May 26, 2017 at 1:37 AM, Adam Holt <holt at laptop.org> wrote:
> Just FYI...
>
> Apache 2.4.6 was released July ~19, 2013 (used by IIAB/XSCE 6.2 on CentOS).
>
> Apache 2.4.10 was released Jule ~19, 2014 (used by IIAB/XSCE 6.2 on
> Debian/Raspbian).
>
> Apache 2.4.25 was release Dec ~19, 2016...if anybody knows any particularly
> important risks above that Internet-in-a-Box may face, please let us know!
This should be completely ignored in regards to, Red Hat in RHEL, and
as a direct result. CentOS manages the patches/CVEs in the version of
apache shipped and the risks are dealt with by the security team.
Details for all CVEs can be seen at
https://access.redhat.com/security/security-updates/
More information about the Server-devel
mailing list