apache22 -- several vulnerabilities

2012-09-13T00:00:00
ID 65539C54-2517-11E2-B9D6-20CF30E32F6D
Type freebsd
Reporter FreeBSD
Modified 2012-09-13T00:00:00

Description

Apache HTTP SERVER PROJECT reports:

low: XSS in mod_negotiation when untrusted uploads are supported CVE-2012-2687 Possible XSS for sites which use mod_negotiation and allow untrusted uploads to locations which have MultiViews enabled. low: insecure LD_LIBRARY_PATH handling CVE-2012-0883 This issue was already fixed in port version 2.2.22_5