Problems with the Linux version of XAMPP, questions, comments, and anything related.
A recent PCI scan found this vulnerability in Apache 2.4.4:
mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors.
The problem is fixed in 2.4.6. Could we please get an update to XAMPP with 2.4.6?
Thank you very much,
- Posts: 1
- Joined: 14. November 2013 16:19
- Operating System: Ubuntu 12.04.2 LTS
We are working on new versions and we will release them soon. Thanks for posting.
- Posts: 107
- Joined: 22. March 2013 12:29
- Operating System: Windows, Linux, OS X
I wonder why this seems to be important?! Xampp is a development environment and NOT meant for public hosts. So, this "vulnerability" does not affect development environments. Somehow strange.
- Posts: 8136
- Joined: 09. March 2008 13:04
Return to XAMPP for Linux
Who is online
Users browsing this forum: No registered users and 3 guests