Ubuntu: Security Advisory (USN-802-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-593)

php 5.1.9 fixes among other things some security issues : - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory CVE-2008-5498. - the mbstring.funcoverload in .htaccess was applied to other virtual hosts on th...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-441)

This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : apache2-mod_security2 (apache2-mod_security2-920)

A remote DoS condition in the multipart processing of apache2-modsecurity2 has been fixed. No CVE has been assigned to this issue yet. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : apache2 (apache2-330)

This updated fixes a problem in modproxyhttp that was introduced by previous security update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-330. The text description of this plugin i...

openSUSE Security Update : apache2 (apache2-222)

Missing sanity checks of FTP URLs allowed cross site scripting XSS attacks via the modproxyftp module CVE-2008-2939. Missing precautions allowed cross site request forgery CSRF via the modproxybalancer interface CVE-2007-6420. A memory leak in the ssl module could crash apache CVE-2008-1678...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-168)

CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660 have been fixed in the php5 update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-modphp5-168. The text description of this plugin is C...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-310)

This update fixes a buffer overflow in phpimap.c that uses an old IMAP API. This bug can be exploited to execute arbitrary code remotely via long IMAP requests. CVE-2008-2829 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-593)

php 5.1.9 fixes among other things some security issues : - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory CVE-2008-5498. - the mbstring.funcoverload in .htaccess was applied to other virtual hosts on th...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-441)

This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-61)

This update of php5 fixes : - possible stack-based buffer overflow CVE-2008-2050 - incomplete escapeshellcmd CVE-2008-2051 - printf integer overflow CVE-2008-1384 - insecure GENERATESEED macro CVE-2008-2107 - timezone update for DST in Pakistan %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

[SECURITY] [DSA 1834-1] New apache2 packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1834 [email protected] http://www.debian.org/security/ Stefan Fritsch July 15, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : apache2 vulnerabilities (USN-802-1)

It was discovered that modproxyhttp did not properly handle a large amount of streamed data when used as a reverse proxy. A remote attacker could exploit this and cause a denial of service via memory resource consumption. This issue affected Ubuntu 8.04 LTS, 8.10 and 9.04. CVE-2009-1890 It was...

Debian Security Advisory DSA 1816-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 1816-1. OpenVAS Vulnerability Test $Id: deb18161.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1816-1 apache2 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian: Security Advisory (DSA-1816-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 1816-1] New apache2 packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1816-1 [email protected] http://www.debian.org/security/ Stefan Fritsch June 16, 2009 http://www.debian.org/security/faq -...

Ubuntu USN-787-1 (apache2)

The remote host is missing an update to apache2 announced via advisory USN-787-1. OpenVAS Vulnerability Test $Id: ubuntu7871.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7871.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-787-1 apache2 Authors: Thomas...

Ubuntu: Security Advisory (USN-787-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-787-1: Apache vulnerabilities

Matthew Palmer discovered an underflow flaw in apr-util as included in Apache. An attacker could cause a denial of service via application crash in Apache using a crafted SVNMasterURI directive, .htaccess file, or when using modapreq2. This issue only affected Ubuntu 6.06 LTS. CVE-2009-0023 Sande...

FreeBSD : apache2 -- SSL remote DoS (7b81fc47-239f-11d9-814e-0001020eed82)

The Apache HTTP Server 2.0.51 release notes report that the following issues have been fixed : A segfault in modssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. CAN-2004-0751 A potential infinite loop in modssl which could be triggered given...