6 Oct
2021
6 Oct
'21
1:51 p.m.
On Wed, 6 Oct 2021 12:52:34 +1300, Peter Reutemann quoted:
'> Tracked as CVE-2021-41773, the vulnerability affects only Apache web servers running version 2.4.49...'
Just FYI, Debian 10 ships with 2.4.38, while Debian 11 includes 2.4.48 (just checked a couple of installations). The only place I’ve found 2.4.49 among machines I’m responsible for is an internal one running Debian Unstable.