[CentOS] CVE-2019-0211 CentOS SCL httpd24 patches

Tue Apr 16 18:11:12 UTC 2019
Johnny Hughes <johnny at centos.org>

On 4/16/19 3:05 AM, Vesselin Markov wrote:
> Hi folks,
> 
> On April 11th 2019 RedHat has responded to 
> 
> httpd: privilege escalation from modules scripts (CVE-2019-0211)
> mod_auth_mellon: authentication bypass in ECP flow (CVE-2019-3878)
> 
> building a patched Apache http24 version for Software Collections -
> 
> https://access.redhat.com/errata/RHSA-2019:0746
> 
> When can we expect this will be done for the SCL CentOS 7?

I am not sure of the answer, but I sent this to the CentOS-Devel mail
list to ask:

https://lists.centos.org/pipermail/centos-devel/2019-April/017334.html

Thanks,
Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20190416/42f21566/attachment-0005.sig>