Apache/2.4.61 File

| CVE | Severity | Description | |------|----------|-------------| | | High | HTTP/2 DoS via CONTINUATION frames – can cause CPU exhaustion | | CVE-2024-40898 | Moderate | SSRF in mod_rewrite with proxied requests under specific configurations | | CVE-2024-38477 | Low | Null pointer dereference in mod_proxy_http2 | | CVE-2024-38476 | Moderate | Memory corruption in mod_http2 when using HTTP/2 trailers |

This release patches multiple CVEs, making it critical for public-facing servers: apache/2.4.61

Apache 2.4.61 represents the stability and responsiveness of the Apache community. It secures the infrastructure against the evolving landscape of HTTP/2 attacks while maintaining the high-reliability standard expected of the world's most popular web server. apache/2.4.61