Vulnerability in apache = 2.2.21 may allow remote code execution (edge)
http://marc.info/?l=apache-httpd-dev&m=132205829523882&w=2
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2011-4317 (not yet avail)
Patch available in link above
(from redmine: issue id 844, created on 2011-11-28, closed on 2012-01-05)