FYI...Apache 2.4.10 released
Release Date: 2014-07-21
Criticality: Moderately Critical
Where: From remote
Solution Status: Vendor Workaround
Software: Apache HTTP Server 2.4.x
... vulnerabilities are reported in versions 2.4.9 and prior...
Original Advisory: Apache:
"... security vulnerabilities fixed in released versions of Apache httpd 2.4..."
Stable Release - Latest Version: 2.4.10 (released 2014-07-21)
CVE Reference: CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523
July 21 2014
Impact: Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 2.4.10 ...