25 matches found
EUVD-2006-5972
Malware in sbrugna...
RHSA-2006:0746 Red Hat Security Advisory: mod_auth_kerb security update
Bulletin has no description...
Moderate: Red Hat Bug Fix Advisory: httpd24 bug fix and enhancement update
Updated httpd24 packages are now available as a part of Red Hat Software Collections for Red Hat Enterprise Linux. The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with...
[SECURITY] Fedora 32 Update: mod_authnz_pam-1.2.1-1.fc32
modauthnzpam is a PAM authorization module, supplementing authentication done by other modules, for example modauthkerb; it can also be used as full Basic Authentication provider which runs the login, password authentication through the PAM stack...
Moderate: Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Moderate: Red Hat Security Advisory: httpd24 security, bug fix, and enhancement update
An update for httpd24-httpd, httpd24-nghttp2, and httpd24-curl is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
Moderate: Red Hat Security Advisory: httpd24 security, bug fix, and enhancement update
An update for httpd24, httpd24-curl, httpd24-httpd, httpd24-modauthkerb, and httpd24-nghttp2 is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which give...
Moderate: Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
Updated httpd24 packages are now available as a part of Red Hat Software Collections 2.4 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 4 : mod_auth_kerb (ELSA-2006-0746)
From Red Hat Security Advisory 2006:0746 : Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is...
Gentoo Security Advisory GLSA 200701-14 (mod_auth_kerb)
The remote host is missing updates announced in advisory GLSA 200701-14. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200701-14 (mod_auth_kerb)
The remote host is missing updates announced in advisory GLSA 200701-14. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-200701-14 : Mod_auth_kerb: Denial of Service
The remote host is affected by the vulnerability described in GLSA-200701-14 Modauthkerb: Denial of Service Modauthkerb improperly handles component byte encoding in the dergetoid function, allowing for a buffer overflow to occur if there are no components which require more than one byte for...
Fedora Core 5 : mod_auth_kerb-5.3-2.fc5 (2006-1341)
This update includes the latest upstream release of modauthkerb, version 5.3, which includes the fix for a security issue. An off by one flaw was found in the way modauthkerb handles certain Kerberos authentication messages. A remote client could send a specially crafted authentication request...
RHEL 4 : mod_auth_kerb (RHSA-2006:0746)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2006:0746 advisory. modauthkerb is module for the Apache HTTP Server designed to provide Kerberos authentication over HTTP. An off by one flaw was found in the way...
CentOS 4 : mod_auth_kerb (CESA-2006:0746)
Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...
Low mod_auth_kerb security update
5.0-1.3.el4 - add fix for CVE-2006-5989 Nalin Dahyabhai, 216482...
mod_auth_kerb security update
CentOS Errata and Security Advisory CESA-2006:0746 Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthke...
Low: Red Hat Security Advisory: mod_auth_kerb security update
Updated modauthkerb packages that fix a security flaw and a bug in multiple realm handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. modauthkerb is module for the Apache HTTP Server designed to...
Apache Mod_Auth_Kerb单字节溢出拒绝服务漏洞
Apache是一款开放源代码WEB服务程序。 Apache的modauthkerb模块实现上存在堆溢出漏洞,远程攻击者可能利用此漏洞导致模块拒绝服务。 在Apache的modauthkerb模块的spnegokrb5/derget.c文件中,dergetoid函数存在单字节溢出漏洞。攻击者可以通过发送特制的Kerberos消息触发堆溢出,导致拒绝服务。 Apache modauthkerb 5.2 Apache modauthkerb 5.1 Apache modauthkerb 5.0 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
[ MDKSA-2006:218 ] - Updated apache-mod_auth_kerb packages fixes DoS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:218 http://www.mandriva.com/security/ Package : apache-modauthkerb Date : November 23, 2006 Affected: Corporate 4.0 Problem Description: An off-by-one error in the dergetoid function in modauthkerb 5.0 allow...