]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ed99ef0) | patch
fix `rewritecond expr` regression in 2.4.64
authorEric Covener <covener@apache.org>
Mon, 21 Jul 2025 11:12:44 +0000 (11:12 +0000)
committerEric Covener <covener@apache.org>
Mon, 21 Jul 2025 11:12:44 +0000 (11:12 +0000)
commit8abb3d06b23975705ebcf4bf4476464fd0b9bd0b
treeaa559732a4b04fc00813502fceed5292f07a0580tree | snapshot
parented99ef021de902363c36afa5786f54163ffae2dbcommit | diff
fix `rewritecond expr` regression in 2.4.64

  *) SECURITY: CVE-2025-54090: Apache HTTP Server: 'RewriteCond expr'
     always evaluates to true in 2.4.64 (cve.mitre.org)
     A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond
     expr ..." tests evaluating as "true".
     Users are recommended to upgrade to version 2.4.65, which fixes
     the issue.

Reviewed By: covener, ylavic, gbechis, jorton

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1927361 13f79535-47bb-0310-9956-ffa450edef68
modules/mappers/mod_rewrite.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git