Apache HTTP Server 2.0.49 Release Notes - Key Vulnerability Information This release addresses three notable security vulnerabilities: 1. CAN-2004-0174 - Description: A potential denial of service on some platforms due to a race condition in handling short-lived connections, affecting versions of AIX, Solaris, and Tru64 but not FreeBSD or Linux. - References: CVE-2004-0174 2. CAN-2003-0020 - Description: Arbitrary client-supplied strings could be written to the error log. While this is particularly harmful for open error logs on some terminal emulators, it's still an issue. - References: CVE-2003-0020 3. CAN-2004-0113 - Description: A remote trigger memory leak in allows denial of service due to excessive memory consumption. - References: CVE-2004-0113 Recommendation This release is considered the best version available and users of all prior versions are advised to upgrade for security and performance improvements.