Apache Software Foundation has pushed out another version of its popular Web server that includes a further fix for the same flaw. Apache 2.2.21 has a patch for the CVE-2011-3192 vulnerability that the group previously fixed in late August. The vulnerability is an old one that recently resurfaced after a researcher published an advisory on a modified version of the bug and released a tool capable of exploiting the vulnerability. The new version of Apache also includes fixes to the handling of byte-range requests to use less memory, to avoid denial of service.
Source: https://threatpost.com/apache-releases-version-2221-new-fix-range-header-flaw-091411/75654/