Description
This apache2 update fixes the following security issues:
- fix for crash in mod_proxy processing specially crafted requests with
reverse proxy configurations that results in a crash and a DoS condition
for the server. CVE-2014-0117
- new config option CGIDScriptTimeout set to 60s in new file
conf.d/cgid-timeout.conf, preventing worker processes hanging forever if
a cgi launched from them has stopped reading input from the server
(DoS). CVE-2014-0231
- Fix for a NULL pointer dereference in mod_cache that causes a crash in
caching forwarding configurations, resulting in a DoS condition