Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2007:0662
HistoryJul 13, 2007 - 9:59 a.m.

httpd, mod_ssl security update

2007-07-1309:59:54
CentOS Project
lists.centos.org
54

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

9.7%

JSON

CentOS Errata and Security Advisory CESA-2007:0662

The Apache HTTP Server is a popular Web server.

The Apache HTTP Server did not verify that a process was an Apache child
process before sending it signals. A local attacker with the ability to run
scripts on the Apache HTTP Server could manipulate the scoreboard and cause
arbitrary processes to be terminated which could lead to a denial of
service. (CVE-2007-3304).

Users of httpd should upgrade to these updated packages, which contain
backported patches to correct this issue. Users should restart Apache
after installing this update.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-July/076195.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076196.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076198.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076199.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076204.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076205.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076206.html
https://lists.centos.org/pipermail/centos-announce/2007-July/076207.html

Affected packages:
httpd
httpd-devel
httpd-manual
httpd-suexec
mod_ssl

Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0662

OSVersionArchitecturePackageVersionFilename
CentOS3i386httpd<Β 2.0.46-68.ent.centoshttpd-2.0.46-68.ent.centos.i386.rpm
CentOS3i386httpd-devel<Β 2.0.46-68.ent.centoshttpd-devel-2.0.46-68.ent.centos.i386.rpm
CentOS3i386mod_ssl<Β 2.0.46-68.ent.centosmod_ssl-2.0.46-68.ent.centos.i386.rpm
CentOS3x86_64httpd<Β 2.0.46-68.ent.centoshttpd-2.0.46-68.ent.centos.x86_64.rpm
CentOS3x86_64httpd-devel<Β 2.0.46-68.ent.centoshttpd-devel-2.0.46-68.ent.centos.x86_64.rpm
CentOS3x86_64mod_ssl<Β 2.0.46-68.ent.centosmod_ssl-2.0.46-68.ent.centos.x86_64.rpm
CentOS3ia64httpd<Β 2.0.46-68.ent.centoshttpd-2.0.46-68.ent.centos.ia64.rpm
CentOS3ia64httpd-devel<Β 2.0.46-68.ent.centoshttpd-devel-2.0.46-68.ent.centos.ia64.rpm
CentOS3ia64mod_ssl<Β 2.0.46-68.ent.centosmod_ssl-2.0.46-68.ent.centos.ia64.rpm
CentOS3s390httpd<Β 2.0.46-68.ent.centoshttpd-2.0.46-68.ent.centos.s390.rpm
Rows per page:
1-10 of 401

Related

nessus 24
prion 1
veracode 1
securityvulns 2
httpd 3
oraclelinux 4
redhat 6
ubuntucve 1
cve 1
debiancve 1
seebug 1
centos 2
openvas 53
altlinux 9
ubuntu 1
fedora 5
freebsd 1
suse 1
gentoo 1
vmware 2
nessus
nessus
Oracle Linux 3 / 4 : httpd (ELSA-2007-0662)
2013-07-12 00:00:00
CentOS 3 / 4 : httpd (CESA-2007:0662)
2007-07-18 00:00:00
Scientific Linux Security Update : httpd on SL4.x, SL3.x i386/x86_64
2012-08-01 00:00:00
prion
prion
Code injection
2007-06-20 22:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:16:41
securityvulns
securityvulns
Apache httpd multiple local DoS conditions
2007-06-20 00:00:00
[Full-disclosure] rPSA-2007-0182-1 httpd mod_ssl
2007-09-14 00:00:00
httpd
httpd
Apache Httpd < 2.0.61 : Signals to arbitrary processes
2006-05-15 00:00:00
Apache Httpd < 2.2.6 : Signals to arbitrary processes
2006-05-15 00:00:00
Apache Httpd < 1.3.39 : Signals to arbitrary processes
2006-05-15 00:00:00
oraclelinux
oraclelinux
Moderate: httpd security update
2007-07-13 00:00:00
Moderate: httpd security update
2007-06-26 00:00:00
httpd security, bug fix, and enhancement update
2007-11-27 00:00:00
redhat
redhat
(RHSA-2007:0662) Moderate: httpd security update
2007-07-13 00:00:00
(RHSA-2007:0532) Moderate: apache security update
2007-06-26 00:00:00
(RHSA-2007:0556) Moderate: httpd security update
2007-06-26 00:00:00
ubuntucve
ubuntucve
CVE-2007-3304
2007-06-20 00:00:00
cve
cve
CVE-2007-3304
2007-06-20 22:30:00
debiancve
debiancve
CVE-2007-3304
2007-06-20 22:30:00
seebug
seebug
Apache HTTP Server WorkerθΏ›η¨‹ε€šδΈͺζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2007-08-29 00:00:00
centos
centos
apache security update
2007-06-26 23:35:19
httpd, mod_ssl security update
2007-06-27 11:06:14
openvas
openvas
HP-UX Update for Apache HPSBUX02273
2009-05-05 00:00:00
HP-UX Update for Apache HPSBUX02273
2009-05-05 00:00:00
Ubuntu: Security Advisory (USN-499-1)
2009-03-23 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.4-alt30
2007-07-04 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.4-alt31
2007-07-05 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.4-alt30
2007-07-04 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2007-08-17 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: httpd-2.2.4-2.1.fc6
2007-07-12 22:53:51
[SECURITY] Fedora 7 Update: httpd-2.2.4-4.1.fc7
2007-06-27 03:52:42
[SECURITY] Fedora Core 5 Update: httpd-2.2.2-1.3
2007-07-02 15:01:38
freebsd
freebsd
apache -- multiple vulnerabilities
2007-09-07 00:00:00
suse
suse
remote denial of service in apache2
2007-11-19 15:20:20
gentoo
gentoo
Apache: Multiple vulnerabilities
2007-11-07 00:00:00
vmware
vmware
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

9.7%

JSON
Related for CESA-2007:0662
nessus24prion1veracode1securityvulns2httpd3oraclelinux4redhat6ubuntucve1cve1debiancve1seebug1centos2openvas53altlinux9ubuntu1fedora5freebsd1suse1gentoo1vmware2