mod_session_cookie does not respect expiry time allowing sessions to be reused. mod_http2: fixes a DoS attack vector. mod_ssl: Fix infinite loop triggered by a client-initiated renegotiation in TLSv1.2 (or earlier).
The Apache Software Foundation Mailing Lists "Publicly archived mailing lists are critical to the operation of the Apache Software Foundation (ASF) and to our many Apache Projects. "