A group of ASF projects (HTTP Server, Tomcat, Traffic Server, mod_perl) has analyzed the CGI application vulnerability recently published at https://httpoxy.org/
Their detailed analysis, targeted at Web server administrators and CGI developers and including mitigation information, can be found at https://www.apache.org/security/asf-httpoxy-response.txt
Dipankar Mazumdar is the Director of Developer Relations at Cloudera, leading global developer initiatives across lakehouse architecture and AI. He previously held advocacy and...
By: Piotr P. Karwasz, VP Logging, Apache Software Foundation The disclosure of Log4Shell (CVE-2021-44228) on December 9, 2021 did not just expose a vulnerability:...
By: Chia-Ping Tsai (ALC Taipei Lead) At OpenSource4You (ALC Taipei), an Apache Local Community chapter based in Taiwan, mentorship is our core. We recently...