119 matches found
httpd security, bug fix, and enhancement update
2.2.3-74.0.1.el5 - fix modssl always performing full renegotiation Joe Jin orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-74 - further %post scriptlet fix 752618, 867736 2.2.3-73 - fix %post scriptlet output 752618,...
httpd, mod_ssl security update
CentOS Errata and Security Advisory CESA-2013:0130 Updated httpd packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common...
Low: Red Hat Security Advisory: httpd security, bug fix, and enhancement update
Updated httpd packages that fix multiple security issues, various bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give...
Scientific Linux Security Update : httpd on SL3.x i386/x86_64
A flaw was found in the Apache HTTP Server modstatus module. On sites where the server-status page is publicly accessible and ExtendedStatus is enabled this could lead to a cross-site scripting attack. On Red Hat Enterprise Linux the server-status page is not enabled by default and it is best...
Scientific Linux Security Update : httpd on SL5.x, SL4.x i386/x86_64
The Apache HTTP Server did not verify that a process was an Apache child process before sending it signals. A local attacker with the ability to run scripts on the Apache HTTP Server could manipulate the scoreboard and cause arbitrary processes to be terminated which could lead to a denial of...
SuSE 11.1 Security Update : Apache (SAT Patch Number 5090)
This update fixes a remote denial of service bug memory exhaustion in the Apache 2 HTTP server, that could be triggered by remote attackers using multiple overlapping Request Ranges. CVE-2011-3192 It also fixes a issue in moddav, where the 1 modcache and 2 moddav modules in the Apache HTTP Server...
mod_dav: DoS (httpd child process crash) by parsing URI structure with missing path segments
The 1 modcache and 2 moddav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service process crash via a request that lacks a path...
Ubuntu Update for apache2 vulnerabilities USN-1021-1
Ubuntu Update for Linux kernel vulnerabilities USN-1021-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10211.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for apache2 vulnerabilities USN-1021-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1021-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : apache2 vulnerabilities (USN-1021-1)
It was discovered that Apache's modcache and moddav modules incorrectly handled requests that lacked a path. A remote attacker could exploit this with a crafted request and cause a denial of service. This issue affected Ubuntu 6.06 LTS, 8.04 LTS, 9.10 and 10.04 LTS. CVE-2010-1452 It was discovere...
USN-1021-1: Apache vulnerabilities
It was discovered that Apache's modcache and moddav modules incorrectly handled requests that lacked a path. A remote attacker could exploit this with a crafted request and cause a denial of service. This issue affected Ubuntu 6.06 LTS, 8.04 LTS, 9.10 and 10.04 LTS. CVE-2010-1452 It was discovere...
SuSE 10 Security Update : Apache 2 (ZYPP Patch Number 6572)
This update of the Apache webserver fixes various security issues : - the option IncludesNOEXEC could be bypassed via .htaccess. CVE-2009-1195 - modproxy could run into an infinite loop when used as reverse proxy. CVE-2009-1890 - moddeflate continued to compress large files even after a network...
Mandriva Update for apache MDVSA-2010:153 (apache)
Check for the Version of apache OpenVAS Vulnerability Test Mandriva Update for apache MDVSA-2010:153 apache Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Mandriva Update for apache MDVSA-2010:153 (apache)
Check for the Version of apache OpenVAS Vulnerability Test Mandriva Update for apache MDVSA-2010:153 apache Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
[ MDVSA-2010:153 ] apache
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:153 http://www.mandriva.com/security/ Package : apache Date : August 16, 2010 Affected: 2009.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been found and corrected in apache: The...
Mandriva Linux Security Advisory : apache (MDVSA-2010:153)
Multiple vulnerabilities has been found and corrected in apache : The modcache and moddav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service process crash via a request that lacks a path CVE-2010-1452. modproxy in httpd in Apache HTTP Server...
Mandriva Linux Security Advisory : apache (MDVSA-2010:152)
A vulnerability has been found and corrected in apache : The modcache and moddav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service process crash via a request that lacks a path CVE-2010-1452. Packages for 2008.0 are provided as of the Extend...
Fedora 13 : httpd-2.2.16-1.fc13 (2010-12478)
This update contains the latest stable release of the Apache HTTP Server. One security fix is included: CVE-2010-1452: moddav, modcache: Fix Handling of requests without a path segment. Several bugs are also fixed: http://www.apache.org/dist/httpd/CHANGES2.2.16 Note that Tenable Network Security...
httpd mod_cache segfault
cacheutil.c in the modcache module in Apache HTTP Server httpd, when caching is enabled and a threaded Multi-Processing Module MPM is used, allows remote attackers to cause a denial of service child processing handler crash via a request with the 1 s-maxage, 2 max-age, 3 min-fresh, or 4 max-stale...
Apache 2.2.x < 2.2.16 Multiple Vulnerabilities
According to its banner, the version of Apache 2.2.x running on the remote host is prior to 2.2.16. It is, therefore, potentially affected by multiple vulnerabilities : - A denial of service vulnerability in modcache and moddav. CVE-2010-1452 - An information disclosure vulnerability in...