(RHSA-2004:058) mod_python security update

2004-02-2600:00:00

access.redhat.com

0.044 Low

EPSS

Percentile

92.4%

JSON

mod_python embeds the Python language interpreter within the Apache httpd
server.

A bug has been found in mod_python versions 2.7.10 and earlier that can
lead to a denial of service vulnerability. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2003-0973 to
this issue.

Although Red Hat Enterprise Linux shipped with a version of mod_python that
contains this bug, our testing was unable to trigger the denial of service
vulnerability. However, mod_python users are advised to upgrade to these
errata packages, which contain a backported patch that corrects this bug.

OSVersionArchitecturePackageVersionFilename
RedHatanyia64mod_python< 2.7.8-2mod_python-2.7.8-2.ia64.rpm
RedHatanys390mod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.s390.rpm
RedHatanys390xmod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.s390x.rpm
RedHatanyia64mod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.ia64.rpm
RedHatanyx86_64mod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.x86_64.rpm
RedHatanyppcmod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.ppc.rpm
RedHatanyi386mod_python< 3.0.3-3.entmod_python-3.0.3-3.ent.i386.rpm
RedHatanyi386mod_python< 2.7.8-2mod_python-2.7.8-2.i386.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	ia64	mod_python	< 2.7.8-2	mod_python-2.7.8-2.ia64.rpm
RedHat	any	s390	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.s390.rpm
RedHat	any	s390x	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.s390x.rpm
RedHat	any	ia64	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.ia64.rpm
RedHat	any	x86_64	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.x86_64.rpm
RedHat	any	ppc	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.ppc.rpm
RedHat	any	i386	mod_python	< 3.0.3-3.ent	mod_python-3.0.3-3.ent.i386.rpm
RedHat	any	i386	mod_python	< 2.7.8-2	mod_python-2.7.8-2.i386.rpm

0.044 Low

EPSS

Percentile

92.4%

JSON

Related for RHSA-2004:058