This bug was fixed in the package apache2 - 2.4.18-2ubuntu3.17
--------------- apache2 (2.4.18-2ubuntu3.17) xenial-security; urgency=medium
* SECURITY UPDATE: mod_rewrite redirect issue - debian/patches/CVE-2020-1927-1.patch: factor out default regex flags in include/ap_regex.h, server/core.c, server/util_pcre.c. - debian/patches/CVE-2020-1927-2.patch: add AP_REG_NO_DEFAULT to allow opt-out of pcre defaults in include/ap_regex.h, modules/filters/mod_substitute.c, server/util_pcre.c, server/util_regex.c. - CVE-2020-1927 * SECURITY UPDATE: mod_proxy_ftp uninitialized memory issue - debian/patches/CVE-2020-1934.patch: trap bad FTP responses in modules/proxy/mod_proxy_ftp.c. - CVE-2020-1934
-- Marc Deslauriers <email address hidden> Wed, 12 Aug 2020 17:35:50 -0400
This bug was fixed in the package apache2 - 2.4.18-2ubuntu3.17
--------------- 2ubuntu3. 17) xenial-security; urgency=medium
apache2 (2.4.18-
* SECURITY UPDATE: mod_rewrite redirect issue patches/ CVE-2020- 1927-1. patch: factor out default regex flags patches/ CVE-2020- 1927-2. patch: add AP_REG_NO_DEFAULT to allow filters/ mod_substitute. c, server/util_pcre.c, util_regex. c. patches/ CVE-2020- 1934.patch: trap bad FTP responses in proxy/mod_ proxy_ftp. c.
- debian/
in include/ap_regex.h, server/core.c, server/util_pcre.c.
- debian/
opt-out of pcre defaults in include/ap_regex.h,
modules/
server/
- CVE-2020-1927
* SECURITY UPDATE: mod_proxy_ftp uninitialized memory issue
- debian/
modules/
- CVE-2020-1934
-- Marc Deslauriers <email address hidden> Wed, 12 Aug 2020 17:35:50 -0400