mod_session_cookie does not respect expiry time allowing sessions to be reused. mod_http2: fixes a DoS attack vector. mod_ssl: Fix infinite loop triggered by a client-initiated renegotiation in TLSv1.2 (or earlier).
mod_session_cookie does not respect expiry time allowing sessions to be reused. mod_http2: fixes a DoS attack vector. mod_ssl: Fix infinite loop triggered by a client-initiated renegotiation in TLSv1.2 (or earlier).