package/apache: security bump version to 2.4.60

Changelog: https://downloads.apache.org/httpd/CHANGES_2.4.60 Fixes CVE-2024-36387, CVE-2024-38472 (Windows-only), CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477 & CVE-2024-39573. Signed-off-by: Bernd Kuhls <bernd@kuhls.net> Signed-off-by: Arnout Vandecappelle <arnout@mind.be> (cherry picked from commit 33de60dbff80e44062ba57aea2489cf4dbd26d02) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2024-07-01 20:27:34 +02:00 · 2024-07-01 20:27:34 +02:00 · 2ddb885f6b
commit 2ddb885f6b
parent ecc0c1fb12
2 changed files with 3 additions and 3 deletions
--- a/package/apache/apache.hash
+++ b/package/apache/apache.hash
@ -1,5 +1,5 @@
 # From https://downloads.apache.org/httpd/httpd-2.4.59.tar.bz2.{sha256,sha512}
-sha256  ec51501ec480284ff52f637258135d333230a7d229c3afa6f6c2f9040e321323  httpd-2.4.59.tar.bz2
+sha256  7b1ec7ec5635da7cb01550513215a90f8b2f52bb7c90cf3e97ede936d3e55b0f  httpd-2.4.60.tar.bz2
-sha512  209da0bbac5e2564d4590302515b35495be6402273ff4024aa93e85e44554c95e053201d606383936425a41e1b5b97e6b40055dcbb385eb691a5029a6f3158c2  httpd-2.4.59.tar.bz2
+sha512  c1591389f76699beaa5d32b019729e25f1ed5b828311c82b52f1a4edd5d28b73e697958df384d7628b314521a831dbb0af418bc37cdf031cfe133e53c195d8ad  httpd-2.4.60.tar.bz2
 # Locally computed
 sha256  47b8c2b6c3309282a99d4a3001575c790fead690cc14734628c4667d2bbffc43  LICENSE
--- a/package/apache/apache.mk
+++ b/package/apache/apache.mk
@ -4,7 +4,7 @@
 #
 ################################################################################
-APACHE_VERSION = 2.4.59
+APACHE_VERSION = 2.4.60
 APACHE_SOURCE = httpd-$(APACHE_VERSION).tar.bz2
 APACHE_SITE = https://dlcdn.apache.org/httpd
 APACHE_LICENSE = Apache-2.0