CVE-2014-8583

2014-12-1618:59:00

Debian Security Bug Tracker

security-tracker.debian.org

0.001 Low

EPSS

Percentile

26.1%

JSON

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.

OSVersionArchitecturePackageVersionFilename
Debian12allmod-wsgi< 4.2.7-1mod-wsgi_4.2.7-1_all.deb
Debian11allmod-wsgi< 4.2.7-1mod-wsgi_4.2.7-1_all.deb
Debian10allmod-wsgi< 4.2.7-1mod-wsgi_4.2.7-1_all.deb
Debian999allmod-wsgi< 4.2.7-1mod-wsgi_4.2.7-1_all.deb
Debian13allmod-wsgi< 4.2.7-1mod-wsgi_4.2.7-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	mod-wsgi	< 4.2.7-1	mod-wsgi_4.2.7-1_all.deb
Debian	11	all	mod-wsgi	< 4.2.7-1	mod-wsgi_4.2.7-1_all.deb
Debian	10	all	mod-wsgi	< 4.2.7-1	mod-wsgi_4.2.7-1_all.deb
Debian	999	all	mod-wsgi	< 4.2.7-1	mod-wsgi_4.2.7-1_all.deb
Debian	13	all	mod-wsgi	< 4.2.7-1	mod-wsgi_4.2.7-1_all.deb

0.001 Low

EPSS

Percentile

26.1%

JSON

Related for DEBIANCVE:CVE-2014-8583