15 matches found
openSUSE Security Update : apache2-mod_fcgid (openSUSE-SU-2011:0884-1)
A possible stack overflow in apache2-modfcgid due to wrong pointer arithmetic has been fixed. CVE-2010-3872 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Gentoo Security Advisory GLSA 201207-09 (mod_fcgid)
The remote host is missing updates announced in advisory GLSA 201207-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
apache2-mod_fcgid: fixed possible stack overflow due to wrong pointer arithmetic (CVE-2010-3872) (important)
A possible stack overflow in apache2-modfcgid due to wrong pointer arithmetic has been fixed. CVE-2010-3872 has been assigned to this issue...
[SECURITY] [DSA-2140-1] New libapache2-mod-fcgid packages fixes stack overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2140-1 [email protected] http://www.debian.org/security/ Stefan Fritsch January 05, 2011 http://www.debian.org/security/faq -...
Debian DSA-2140-1 : libapache2-mod-fcgid - stack overflow
A vulnerability has been found in Apache modfcgid. The Common Vulnerabilities and Exposures project identifies the following problem : - CVE-2010-3872 A stack overflow could allow an untrusted FCGI application to cause a server crash or possibly to execute arbitrary code as the user running the w...
[SECURITY] [DSA-2140-1] New libapache2-mod-fcgid packages fixes stack overflow
------------------------------------------------------------------------ Debian Security Advisory DSA-2140-1 [email protected] http://www.debian.org/security/ Stefan Fritsch January 05, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2140-1] New libapache2-mod-fcgid packages fixes stack overflow
------------------------------------------------------------------------ Debian Security Advisory DSA-2140-1 [email protected] http://www.debian.org/security/ Stefan Fritsch January 05, 2011 http://www.debian.org/security/faq -...
Fedora Update for mod_fcgid FEDORA-2010-17472
Check for the Version of modfcgid OpenVAS Vulnerability Test Fedora Update for modfcgid FEDORA-2010-17472 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for mod_fcgid FEDORA-2010-17472
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for mod_fcgid FEDORA-2010-17474
Check for the Version of modfcgid OpenVAS Vulnerability Test Fedora Update for modfcgid FEDORA-2010-17474 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for mod_fcgid FEDORA-2010-17474
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2010-3872
The CVE-2010-3872 issue affects Apache mod_fcgid. A flaw in fcgid_header_bucket_read() (fcgid_bucket.c) could trigger a stack-based buffer overflow from malformed FastCGI responses, potentially crashing the server or allowing arbitrary code execution with the server’s privileges. Public sources i...
Fedora 13 : mod_fcgid-2.3.6-1.fc13 (2010-17434)
This update to the current upstream maintenance release includes a fix for a possible stack buffer overwrite CVE-2010-3872. It also changes the default value of FcgidMaxRequestLen from 1GB to 128K; administrators should change this to an appropriate value based on site requirements. Other changes...
Fedora 12 : mod_fcgid-2.3.6-1.fc12 (2010-17474)
This update to the current upstream maintenance release includes a fix for a possible stack buffer overwrite CVE-2010-3872. It also changes the default value of FcgidMaxRequestLen from 1GB to 128K; administrators should change this to an appropriate value based on site requirements. Other changes...
Fedora 14 : mod_fcgid-2.3.6-1.fc14 (2010-17472)
This update to the current upstream maintenance release includes a fix for a possible stack buffer overwrite CVE-2010-3872. It also changes the default value of FcgidMaxRequestLen from 1GB to 128K; administrators should change this to an appropriate value based on site requirements. Other changes...