Fedora update for httpd - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Fedora update for httpd

Secunia Advisory:	SA18585
Release Date:	2006-01-23

Critical:	Moderately critical
Impact:	Cross Site Scripting DoS
Where:	From remote
Solution Status:	Vendor Patch

OS:	Fedora Core 4


CVE reference:	CVE-2005-2970 (Secunia mirror) CVE-2005-3352 (Secunia mirror) CVE-2005-3357 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Fedora has issued an update for httpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and to conduct cross-site scripting attacks. For more information: SA16559 SA18008 SA18307 Solution: Apply updated packages. Fedora Core 4: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ dad048a945087d7bfc78bc4ae94111ce48ecf7fb SRPMS/httpd-2.0.54-10.3.src.rpm 5b6d6597cfe9f1bb36a21227943cde8664eafdcb ppc/httpd-2.0.54-10.3.ppc.rpm 0d57fd912a03a9079c11cd8bfb49fd4f5dab7a99 ppc/httpd-devel-2.0.54-10.3.ppc.rpm 2656e7eedf0695ae66b946c3dfce4291082edac8 ppc/httpd-manual-2.0.54-10.3.ppc.rpm 8b52dfd03a206f48ded470a9b72806de3077c270 ppc/mod_ssl-2.0.54-10.3.ppc.rpm 16ec57db5e7c2565868c7adeff003881c938bf23 ppc/debug/httpd-debuginfo-2.0.54-10.3.ppc.rpm 8bed48fddd4cfd2bcbb0ee14e738c5cefa616eae x86_64/httpd-2.0.54-10.3.x86_64.rpm 6175611861e72f6798966e25663483a3dba92671 x86_64/httpd-devel-2.0.54-10.3.x86_64.rpm 94f951cbdfac7529f1f0707786ef59525797ea44 x86_64/httpd-manual-2.0.54-10.3.x86_64.rpm 1c71c5f55766d2d1152f3e287aacf70e017fe2ad x86_64/mod_ssl-2.0.54-10.3.x86_64.rpm 8a870ce0e7f5c14478f5448714babfd53ff773a1 x86_64/debug/httpd-debuginfo-2.0.54-10.3.x86_64.rpm 6db7bcdecfe33ad04ccd1f62cb865d5d85526bd5 i386/httpd-2.0.54-10.3.i386.rpm 757af8de4747675acba18a57ad50425324b62015 i386/httpd-devel-2.0.54-10.3.i386.rpm add58762ba00bf5e967183039fd387b3c22fa857 i386/httpd-manual-2.0.54-10.3.i386.rpm 899f3e257cb5ecfe61bf9d3b65ea68faaf161293 i386/mod_ssl-2.0.54-10.3.i386.rpm 893889af90727804fd647d8f7c88bb0656c71c9d i386/debug/httpd-debuginfo-2.0.54-10.3.i386.rpm Other References: SA16559: http://secunia.com/advisories/16559/ SA18008: http://secunia.com/advisories/18008/ SA18307: http://secunia.com/advisories/18307/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

112 Related Secunia Security Advisories, displaying 10

1. Fedora update for libtiff

2. Fedora update for ethereal

3. Fedora update for kernel

4. Fedora update for firefox

5. Fedora update for dia

6. Fedora update for sendmail

7. Fedora update for gnupg

8. Fedora update for squirrelmail

9. Fedora update for kernel

10. Fedora update for gnupg

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Blender Multiple Temporary File Security Issues

2.	Drupal Site Documentation Module Information Disclosure

3.	68 Classifieds "cat" SQL Injection Vulnerability

4.	Kostenloses Linkmanagements cript Multiple Vulnerabilities

5.	Symantec Altiris Deployment Solution Multiple Vulnerabilities

6.	W1L3D4 Philboard Multiple SQL Injection Vulnerabilities

7.	e107 BLOG Engine Plugin "rid" SQL Injection

8.	GForge Insecure Temporary Files

9.	Oracle Application Server Portal Authentication Bypass

10.	Feedback and Rating Script "listingid" SQL Injection