Lucene search

slackwareSlackware Linux ProjectSSA-2011-284-01
HistoryOct 14, 2011 - 11:59 p.m.

[slackware-security] httpd

Slackware Linux Project

7.8 High


Access Vector

Access Complexity



Confidentiality Impact


Integrity Impact


Availability Impact



0.963 High




New httpd packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1,
13.37, and -current to fix security issues.

Here are the details from the Slackware 13.37 ChangeLog:

patches/packages/httpd-2.2.21-i486-1_slack13.37.txz: Upgraded.
Respond with HTTP_NOT_IMPLEMENTED when the method is not
recognized. [Jean-Frederic Clere] SECURITY: CVE-2011-3348
Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20.
PR 51748. [<lowprio20>]
For more information, see:
(* Security fix *)

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
( for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on for
additional mirror sites near you.

Updated package for Slackware 12.0:

Updated package for Slackware 12.1:

Updated package for Slackware 12.2:

Updated package for Slackware 13.0:

Updated package for Slackware x86_64 13.0:

Updated package for Slackware 13.1:

Updated package for Slackware x86_64 13.1:

Updated package for Slackware 13.37:

Updated package for Slackware x86_64 13.37:

Updated package for Slackware -current:

Updated package for Slackware x86_64 -current:

MD5 signatures:

Slackware 12.0 package:
e6ed3d69eeb235a35799ad4fb43b02bb httpd-2.2.21-i486-1_slack12.0.tgz

Slackware 12.1 package:
531a640d39b1ec2f4216a8fa4cea9c52 httpd-2.2.21-i486-1_slack12.1.tgz

Slackware 12.2 package:
f93ceab045175be85509f0b9f7be0993 httpd-2.2.21-i486-1_slack12.2.tgz

Slackware 13.0 package:
569145d8fb1f800f04f4d6333f16f704 httpd-2.2.21-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
03f6c419d49e3c4a351956ad27d72fd6 httpd-2.2.21-x86_64-1_slack13.0.txz

Slackware 13.1 package:
1a218016a62fbaf8a110e6afcc6789b2 httpd-2.2.21-i486-1_slack13.1.txz

Slackware x86_64 13.1 package:
82eed1a8af9ab4545a18158f4a4641c1 httpd-2.2.21-x86_64-1_slack13.1.txz

Slackware 13.37 package:
d7c15df0fcc28648220ad329b0685f65 httpd-2.2.21-i486-1_slack13.37.txz

Slackware x86_64 13.37 package:
a192a12b1b63489733a7b8fc62435d3d httpd-2.2.21-x86_64-1_slack13.37.txz

Slackware -current package:
a16f461ad9843823811c40de6f38b63e n/httpd-2.2.21-i486-1.txz

Slackware x86_64 -current package:
0b4c491e383ea496020db90aa67b970c n/httpd-2.2.21-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg httpd-2.2.21-i486-1_slack13.37.txz

Then, restart the httpd daemon.