The mod_ssl apache module, as part of our apache2 package, enables the apache webserver to handle the HTTPS protocol. Within the mod_ssl module, two Denial of Service conditions in the input filter have been found. The CVE project assigned the identifiers CAN-2004-0748 and CAN-2004-0751 to these issues.
As temporary workaround you may disable the mod_ssl module in your apache configuration and restart the apache process without SSL support.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 9.0 | i586 | apache2-worker | < 2.0.48-135 | apache2-worker-2.0.48-135.i586.rpm |
openSUSE | 9.0 | x86_64 | apache2-worker | < 2.0.48-135 | apache2-worker-2.0.48-135.x86_64.rpm |
openSUSE | 8.1 | i586 | apache2-prefork | < 2.0.48-135 | apache2-prefork-2.0.48-135.i586.rpm |
openSUSE | 9.0 | x86_64 | apache2 | < 2.0.48-135 | apache2-2.0.48-135.x86_64.rpm |
openSUSE | 8.2 | i586 | libapr0 | < 2.0.48-135 | libapr0-2.0.48-135.i586.rpm |
openSUSE | 8.1 | i586 | apache2-worker | < 2.0.48-135 | apache2-worker-2.0.48-135.i586.rpm |
openSUSE | 9.0 | i586 | apache2 | < 2.0.48-135 | apache2-2.0.48-135.i586.rpm |
openSUSE | 8.2 | i586 | apache2-worker | < 2.0.48-135 | apache2-worker-2.0.48-135.i586.rpm |
openSUSE | 9.1 | i586 | apache2-prefork | < 2.0.49-27.11 | apache2-prefork-2.0.49-27.11.i586.rpm |
openSUSE | 9.1 | x86_64 | apache2-prefork | < 2.0.49-27.11 | apache2-prefork-2.0.49-27.11.x86_64.rpm |