Fedora opdatering til httpd - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Fedora opdatering til httpd

Secunia Advisory:	SA26842
Udsendt:	2007-09-19

Kritisk:	Mindre kritisk
Betydning:	Afsløring af følsomme oplysninger DoS
Hvor:	Fra Internet
Løsning Status:	Producent Patch

OS:	Fedora 7


CVE reference:	CVE-2007-1862 (Secunia mirror) CVE-2007-1863 (Secunia mirror) CVE-2007-3847 (Secunia mirror) CVE-2007-4465 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Beskrivelse: Fedora har udgivet en opdatering til httpd. Denne retter nogle sårbarheder, som kan udnyttes af ondsindede personer til at udføre et DoS (Denial of Service) og få kendskab til følsom information. 1) En fejl i mod_cache modulet under håndteringen af Cache-Control headers kan udnyttes til at crashe child-processen via specielt udformede forespørgsler. Dette kan resultere i et DoS ved benyttelse af et threaded Multi-Processing Module. 2) En fejl under håndteringen af headers fra cache pool-objekter i mod_mem_cache kan udnyttes til at få kendskab til potentielt følsom information. 3) En fejl i mod_proxy kan udnyttes til at forårsage et DoS. Yderligere information: SA26636 Løsning: Installér opdaterede pakker. d3dc55a160abd41a5fdbbc689bf76e67cbde0fb3 mod_ssl-2.2.6-1.fc7.ppc64.rpm b562daa6ae5da6a74d4544cc409bb98228d68f73 httpd-manual-2.2.6-1.fc7.ppc64.rpm 7a6dfad974a0654d24eb0b86126185b1473b9cc0 httpd-devel-2.2.6-1.fc7.ppc64.rpm c185775aa8f5365d92bccfd2d2120816c411899f httpd-debuginfo-2.2.6-1.fc7.ppc64.rpm 40cf855f357b2fa7ecccc924391d410c7cf5e11b httpd-2.2.6-1.fc7.ppc64.rpm bfd502227b6ed79919ea57542624e79ee1e9e03a httpd-debuginfo-2.2.6-1.fc7.i386.rpm 35228e52ec153db2369faf4bbce8a2725b9966be httpd-2.2.6-1.fc7.i386.rpm 19b15128544ec142f176466b6702c906e55ea4d5 httpd-manual-2.2.6-1.fc7.i386.rpm 3403ae305ada347f42680c8f2efdad0500162d08 httpd-devel-2.2.6-1.fc7.i386.rpm d6a992100e0210816d454231ee799904c1640353 mod_ssl-2.2.6-1.fc7.i386.rpm cb8d2c1e49c178ef746bb163541c661563dec613 httpd-debuginfo-2.2.6-1.fc7.x86_64.rpm 670249aeaad497e1a3724aca07ede36f3dcc4be5 httpd-manual-2.2.6-1.fc7.x86_64.rpm 0112f1ffc5ad2838e07eaad1ab4d6091fce52fc4 mod_ssl-2.2.6-1.fc7.x86_64.rpm 96839c8f4500a5cb3fc19b7bfb6084eb91741a91 httpd-devel-2.2.6-1.fc7.x86_64.rpm 624bd35e9b25ea2ec2c826ed18124381e1cdc146 httpd-2.2.6-1.fc7.x86_64.rpm 95e48ce1ef3989a75ba4b73143a8c4a3fd8a4c2b httpd-manual-2.2.6-1.fc7.ppc.rpm e34e3a2ba6b3e2b3dfe9ad9255b6d1b94ca3d83f httpd-devel-2.2.6-1.fc7.ppc.rpm 90105174aafd89add6427b3a13d22d141ba27175 httpd-debuginfo-2.2.6-1.fc7.ppc.rpm 1d2531d00259b7e3f068559e88d57cf02407c438 mod_ssl-2.2.6-1.fc7.ppc.rpm e38b8d541b3a8872e94e85580a8044db3dcb9733 httpd-2.2.6-1.fc7.ppc.rpm 011fe8f7f89bbe992f956c0cc48f50ba8e9dd140 httpd-2.2.6-1.fc7.src.rpm Original Advisory: https://www.redhat.com/archives/fedor...announce/2007-September/msg00320.html Andre Kilder: SA26636: http://secunia.com/advisories/26636/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

124 Relaterede Secunia Advisories, displaying 10

1. Fedora opdatering til icu

2. Fedora opdatering til xine-lib

3. Fedora opdatering til kernel

4. Fedora opdatering til xorg-x11-server

5. Fedora opdatering til pulseaudio

6. Fedora opdatering til xorg-x11-server

7. Fedora opdatering til mantis

8. Fedora opdatering til clamav

9. Fedora opdatering til hsqldb

10. Fedora opdatering til boost

Vis alle relaterede advisories

Send Feedback to Secunia

Hvis du har ny information angående dette Secunia advisory eller et produkt i vores database, så send det venligst til os. Du kan sende det til os enten ved at bruge vores web formular eller ved at sende det til vuln@secunia.com. Ideer, foreslag og andet feedback er også meget velkommen.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Linux Kernel LDT Buffer Size Handling Vulnerability

2.	OpenBSD BIND Query Port DNS Cache Poisoning

3.	Drupal Session Fixation Vulnerability

4.	Red Hat update for thunderbird

5.	Apple Safari Cross-Domain Cookie Injection Vulnerability

6.	IPCop update for perl

7.	Slackware update for dnsmasq

8.	Red Hat update for kernel

9.	Ubuntu update for php

10.	dnsmasq Denial of Service and DNS Cache Poisoning