DTSA-131-1 apache2 - denial of service (memory leak in mod_ssl)

Bulletin has no description...

openSUSE 10 Security Update : apache2 (apache2-5126)

This update fixes multiple bugs in apache : - cross site scripting problem in modimap CVE-2007-5000 - cross site scripting problem in modstatus CVE-2007-6388 - cross site scripting problem in the ftp proxy module CVE-2008-0005 - cross site scripting problem in the error page for status code 413...

openSUSE 10 Security Update : apache2 (apache2-5125)

This update fixes multiple bugs in apache : - cross site scripting problem in modimap CVE-2007-5000 - cross site scripting problem in modstatus CVE-2007-6388 - cross site scripting problem in the ftp proxy module CVE-2008-0005 - cross site scripting problem in the error page for status code 413...

openSUSE 10 Security Update : apache2 (apache2-5127)

This update fixes multiple bugs in apache : - cross site scripting problem in modimap CVE-2007-5000 - cross site scripting problem in modstatus CVE-2007-6388 - cross site scripting problem in the error page for status code 413 CVE-2007-6203 - cross site scripting problem in modproxybalancer...

Security fix for the ALT Linux 9 package apache2 version 2.2.8-alt1

Feb. 29, 2008 Aleksey Avdeev 2.2.8-alt1 - 2.2.8: security fixes CVE-2007-6421, CVE-2007-6421, CVE-2007-6422, CVE-2007-6388, CVE-2007-5000, CVE-2008-0005 - Fix 14601: less-than-optimal examples in conf/sites-available. Thanks Mikhail Gusarov &LTdottedmag altlinux org...

Security fix for the ALT Linux 8 package apache2 version 2.2.8-alt1

Feb. 29, 2008 Aleksey Avdeev 2.2.8-alt1 - 2.2.8: security fixes CVE-2007-6421, CVE-2007-6421, CVE-2007-6422, CVE-2007-6388, CVE-2007-5000, CVE-2008-0005 - Fix 14601: less-than-optimal examples in conf/sites-available. Thanks Mikhail Gusarov &LTdottedmag altlinux org...

Security fix for the ALT Linux 10 package apache2 version 2.2.8-alt1

Feb. 29, 2008 Aleksey Avdeev 2.2.8-alt1 - 2.2.8: security fixes CVE-2007-6421, CVE-2007-6421, CVE-2007-6422, CVE-2007-6388, CVE-2007-5000, CVE-2008-0005 - Fix 14601: less-than-optimal examples in conf/sites-available. Thanks Mikhail Gusarov &LTdottedmag altlinux org...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4909)

This update fixes multiple bugs in php by upgrading it to version 5.2.5. - Flaws in processing multi byte sequences in htmlentities/htmlspecialchars CVE-2007-5898 - overly long arguments to the dl function could crash php CVE-2007-4825 - overy long arguments to the glob function could crash php...

Debian Security Advisory DSA 1132-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 1132-1. Mark Dowd discovered a buffer overflow in the modrewrite component of apache, a versatile high-performance HTTP server. In some situations a remote attacker could exploit this to execute arbitrary code. OpenVAS...

Debian Security Advisory DSA 805-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 805-1. Several problems have been discovered in Apache2, the next generation, scalable, extendable web server. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-1268 Marc Stern...

Debian: Security Advisory (DSA-805-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-1132-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4807)

This version update to php 5.2.5 fixes numerous bugs including some security vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-modphp5-4807. The text description of this...

SuSE 10 Security Update : Apache2 (ZYPP Patch Number 1906)

This update fixes security problems in the Apache2 webserver : modrewrite: Fixed an off-by-one security problem in the ldap scheme handling. For some RewriteRules this could lead to a pointer being written out of bounds. CVE-2006-3747 For SUSE Linux Enterprise Server 10 additionally an old securi...

SuSE 10 Security Update : apache2 (ZYPP Patch Number 4669)

Several bugs were fixed in the Apache2 webserver : These include the following security issues : - modstatus: Fix a possible XSS attack against a site with a public server-status page and ExtendedStatus enabled, for browsers which perform charset 'detection'. CVE-2006-5752 - modcache: Prevent a...

openSUSE 10 Security Update : apache2 (apache2-4666)

Several bugs were fixed in the Apache2 webserver : These include the following security issues : - CVE-2006-5752: modstatus: Fix a possible XSS attack against a site with a public server-status page and ExtendedStatus enabled, for browsers which perform charset 'detection'. - CVE-2007-1863:...

Ubuntu 6.06 LTS / 6.10 / 7.04 : apache2 vulnerabilities (USN-499-1)

Stefan Esser discovered that modstatus did not force a character set, which could result in browsers becoming vulnerable to XSS attacks when processing the output. If a user were tricked into viewing server status output during a crafted server request, a remote attacker could exploit this to...

openSUSE 10 Security Update : apache2 (apache2-1905)

This update fixes the following security problem in the Apache webserver : modrewrite: Fix an off-by-one security problem in the ldap scheme handling. For some RewriteRules this could lead to a pointer being written out of bounds. CVE-2006-3747 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Security fix for the ALT Linux 8 package apache2 version 2.2.6-alt1

Sept. 14, 2007 Aleksey Avdeev 2.2.6-alt1 - 2.2.6 - Adding SECURITY to upstream: + CVE-2007-4465 cve.mitre.org - Updating patchs for 2.2.6: + apache2-2.2.5-alt-debian.conf-0.1.patch to apache2-2.2.6-alt-debian.conf-0.1.patch + apache2-2.2.5-alt-configs-0.1.patch to...

Security fix for the ALT Linux 8 package apache2 version 2.2.5-alt1

Aug. 18, 2007 Aleksey Avdeev 2.2.5-alt1 - 2.2.5 - Adding SECURITY to upstream old patchs removing: + CVE-2007-3847 + CVE-2007-1863 remove apache2-2.2.3-fedora-fix-CVE-2007-1863.patch + CVE-2007-3304 remove apache2-2.2.4-alt-fix-CVE-2007-3304.0.1.patch + CVE-2006-5752 remove...