K16879: Apache Portable Runtime vulnerability CVE-2011-1928

Security Advisory Description Description The fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library 1.4.3 and 1.4.4, and the Apache HTTP Server 2.2.18, allows remote attackers to cause a denial of service infinite loop via a URI that does not match unspecified types of...

Oracle: Security Advisory (ELSA-2011-0844)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SOL16879 - Apache Portable Runtime vulnerability CVE-2011-1928

The fnmatch implementation in aprfnmatch.c in the Apache Portable Runtime APR library 1.4.3 and 1.4.4, and the Apache HTTP Server 2.2.18, allows remote attackers to cause a denial of service infinite loop via a URI that does not match unspecified types of wildcard patterns, as demonstrated by...

openSUSE Security Update : apache2 (openSUSE-SU-2011:0859-1)

This update fixes : - CVE-2011-0419 and CVE-2011-1928: unconstrained recursion when processing patterns - CVE-2010-1623: a remote DoS memory leak in APR's reqtimeoutfilter function %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE Security Update : apache2 (openSUSE-SU-2011:0859-1)

This update fixes : - CVE-2011-0419 and CVE-2011-1928: unconstrained recursion when processing patterns - CVE-2010-1623: a remote DoS memory leak in APR's reqtimeoutfilter function %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

GLSA-201405-24 : Apache Portable Runtime, APR Utility Library: Denial of Service

The remote host is affected by the vulnerability described in GLSA-201405-24 Apache Portable Runtime, APR Utility Library: Denial of Service Multiple vulnerabilities have been discovered in Apache Portable Runtime and APR Utility Library. Please review the CVE identifiers referenced below for...

Security fix for the ALT Linux 7 package apr1 version 1.4.6-alt1

Nov. 16, 2012 Aleksey Avdeev 1.4.6-alt1 - New version 1.4.6 - Security fixes CVE-2011-1928, oCERT-2011-003...

Slackware Advisory SSA:2011-145-01 apr/apr-util

The remote host is missing an update as announced via advisory SSA:2011-145-01. OpenVAS Vulnerability Test $Id: esoftslkssa201114501.nasl 6581 2017-07-06 13:58:51Z cfischer $ Description: Auto-generated from advisory SSA:2011-145-01 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

CentOS Update for apr CESA-2011:0844 centos4 x86_64

Check for the Version of apr OpenVAS Vulnerability Test CentOS Update for apr CESA-2011:0844 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

CentOS Update for apr CESA-2011:0844 centos5 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU02764)

HP/HPE System Management Homepage SMH is prone to multiple vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

SuSE 10 Security Update : libapr1 (ZYPP Patch Number 7610)

This update fixes the following security issue : - 693778: unconstrained recursion when processing patterns. CVE-2011-0419 / CVE-2011-1928 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

FreeBSD Ports: apr1

The remote host is missing an update to the system as announced in the referenced advisory. VID 99a5590c-857e-11e0-96b7-00300582f9fc OpenVAS Vulnerability Test $ Description: Auto generated from VID 99a5590c-857e-11e0-96b7-00300582f9fc Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Debian Security Advisory DSA 2237-2 (apr)

The remote host is missing an update to apr announced via advisory DSA 2237-2. OpenVAS Vulnerability Test $Id: deb22372.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2237-2 apr Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

SuSE 11.1 Security Update : libapr (SAT Patch Number 4845)

This update fixes the following security issues : - 650435: remote DoS in APR. CVE-2010-1623 - 693778: unconstrained recursion when processing patterns CVE-2011-0419 / CVE-2011-1928 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

SuSE 11.1 Security Update : libapr (SAT Patch Number 4845)

This update fixes the following security issues : - 650435: remote DoS in APR. CVE-2010-1623 - 693778: unconstrained recursion when processing patterns CVE-2011-0419 / CVE-2011-1928 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

SuSE 10 Security Update : libapr (ZYPP Patch Number 7611)

This update fixes the following security issues : - 650435: remote DoS in APR. CVE-2010-1623 - 693778: unconstrained recursion when processing patterns. CVE-2011-0419 / CVE-2011-1928 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

Ubuntu 6.06 LTS / 8.04 LTS / 10.04 LTS / 10.10 / 11.04 : apache2, apr vulnerabilities (USN-1134-1)

Maksymilian Arciemowicz reported that a flaw in the fnmatch implementation in the Apache Portable Runtime APR library could allow an attacker to cause a denial of service. This can be demonstrated in a remote denial of service attack against modautoindex in the Apache web server. CVE-2011-0419 Is...

RedHat Update for apr RHSA-2011:0844-01

Check for the Version of apr OpenVAS Vulnerability Test RedHat Update for apr RHSA-2011:0844-01 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for apr FEDORA-2011-6918

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...