Hi Team We read through the following new that Apache httpd is having some vulnerability https://cybernews.com/news/apache-found-critical-bugs-in-httpd-web-server/ We used apache 2.4.39 and apache 2.4.51 in our current environment for proxy purpose. May I know those reported vulnerability will affect our current apache version ? Please advise Best Regards CK
https://httpd.apache.org/security/vulnerabilities_24.html
For CVE-2021-44224, does "configurations mixing forward and reverse proxy declarations" mean ProxyPass/ProxyPassReverse combinations, or does it mean "ProxyRequests on, plus some other stuff". I think it probably means the latter, but just checking.
(In reply to WJCarpenter from comment #2) > For CVE-2021-44224, does "configurations mixing forward and reverse proxy > declarations" mean ProxyPass/ProxyPassReverse combinations, or does it mean > "ProxyRequests on, plus some other stuff". I think it probably means the > latter, but just checking. The later