Debian DSA-2641-2 : perl - rehashing flaw

Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustio...

DSA-2641-1 perl - rehashing flaw

Bulletin has no description...

Debian DSA-2532-1 : libapache2-mod-rpaf - denial of service

Sebastien Bocahu discovered that the reverse proxy add forward module for the Apache webserver is vulnerable to a denial of service attack through a single crafted request with many headers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...

[SECURITY] [DSA 2532-1] libapache2-mod-rpaf security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2532-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst August 22, 2012 http://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-2465-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-2436-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-2436-1 : libapache2-mod-fcgid - inactive resource limits

It was discovered that the Apache FCGID module, a FastCGI implementation, did not properly enforce the FcgidMaxProcessesPerClass resource limit, rendering this control ineffective and potentially allowing a virtual host to consume excessive resources. %NASLMINLEVEL 70300 C Tenable Network Securit...

Debian Security Advisory DSA 2279-1 (libapache2-mod-authnz-external)

The remote host is missing an update to libapache2-mod-authnz-external announced via advisory DSA 2279-1. OpenVAS Vulnerability Test $Id: deb22791.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2279-1 libapache2-mod-authnz-external Authors: Thomas Reinke...

Debian: Security Advisory (DSA-2279-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 2279-1] libapache2-mod-authnz-external security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2279-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 19, 2011 http://www.debian.org/security/faq -...

Debian DSA-2279-1 : libapache2-mod-authnz-external - SQL injection

It was discovered that libapache2-mod-authnz-external, an apache authentication module, is prone to a SQL injection via the $user parameter. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

[BSA-042] Security Update for libapache2-mod-authnz-external

Amaya Rodrigo uploaded new packages for libapache2-mod-authnz-external which fixed the following security problems: CVE-2011-2688 Remotely exploitable SQL injection in the mysql auth module. For the lenny-backports distribution the problems have been fixed in version 3.2.4-2bpo50+1.1. For the...

Debian DSA-2140-1 : libapache2-mod-fcgid - stack overflow

A vulnerability has been found in Apache modfcgid. The Common Vulnerabilities and Exposures project identifies the following problem : - CVE-2010-3872 A stack overflow could allow an untrusted FCGI application to cause a server crash or possibly to execute arbitrary code as the user running the w...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : php5 vulnerability (USN-824-1)

It was discovered that PHP did not properly handle certain malformed JPEG images when being parsed by the Exif module. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service. Note that Tenable Network Security has extracted the preceding...

Ubuntu Update for libapache2-mod-python vulnerability USN-430-1

Ubuntu Update for Linux kernel vulnerabilities USN-430-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4301.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for libapache2-mod-python vulnerability USN-430-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-488-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for libapache2-mod-perl2 vulnerability USN-488-1

Ubuntu Update for Linux kernel vulnerabilities USN-488-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4881.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for libapache2-mod-perl2 vulnerability USN-488-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-430-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-935-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 935-1 (libapache2-mod-auth-pgsql)

The remote host is missing an update to libapache2-mod-auth-pgsql announced via advisory DSA 935-1. iDEFENSE reports that a format string vulnerability in modauthpgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the...