Feb 042010
 

Apache announces new release for 1.3

Apache HTTP Server 1.3.42 Released

The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 1.3.42 of the Apache HTTP
Server (“Apache”). This release is intended as the final release of
version 1.3 of the Apache HTTP Server, which has reached end of life
status.

There will be no more full releases of Apache HTTP Server 1.3.
However, critical security updates may be made available from the
following website:

http://www.apache.org/dist/httpd/patches/

This Announcement notes the significant changes in
1.3.42 as compared to 1.3.41.

This version of Apache is is principally a bug and security fix release.
The following moderate security flaw has been addressed:

* CVE-2010-0010 (cve.mitre.org)
mod_proxy: Prevent chunk-size integer overflow on platforms
where sizeof(int) < sizeof(long). Reported by Adam Zabrocki. Please see the CHANGES_1.3.42 file in this directory for a full list of changes for this version. Apache 1.3.42 is the final stable release of the Apache 1.3 family. We strongly recommend that users of all earlier versions, including 1.3 family releases, upgrade to to the current 2.2 version as soon as possible. For information about how to upgrade, please see the documentation: http://httpd.apache.org/docs/2.2/upgrading.html

Apache 1.3.42 is available for download from

http://httpd.apache.org/download.cgi

This service utilizes the network of mirrors listed at:

http://www.apache.org/mirrors/

 Posted by at 7:03 am