The update includes version 1.3.9 of the Apache Portable Runtime (APR) library, preventing "hangs in the pre-fork and event MPMs (Multi-Processing Modules)" on Solaris systems. Additionally, the release addresses two other security issues and a possible buffer overflow in dbm databases with long values. The developers note that, as with previous releases, add-in modules for Apache 1.3 or 2.0 are not compatible with Apache 2.2.
The link for this article located at H Security is no longer available.
