Design/Logic Flaw

The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileg...

Security fix for the ALT Linux 10 package apache2 version 2.2.14-alt1

Oct. 6, 2009 Aleksey Avdeev 2.2.14-alt1 - 2.2.14 - Security fixes CVE-2009-2412, CVE-2009-2699, CVE-2009-3094, CVE-2009-3095 - Update patchsets: + itk for apache2.2-mpm-itk-2.2.11-02 Closes: 21486 + peruser for httpd-2.2.3-peruser-0.3.0-dc3...