Because of a failed PCI scan for these 2 vulnerabilities: 1. Apache HTTP Server Zero-Length Directory Name in LD_LIBRARY_PATH 2. Apache HTTP Server XSS Vulnerabilities via Hostnames I am forced to upgrade to 2.2.24. From what I've read, these 2 vulnerabilities are fixed in 2.2.24. However, if I am wrong please let me know. What is the best way to upgrade to this version..I am a little skeptical on installing from source since my current version is from the repositories. Help would be much appreciated.