[Technik] [SECURITY] [DSA 1131-1] New apache package fix
buffer overflow
Noèl Köthe
noel at debian.org
Wed Aug 2 10:26:03 CEST 2006
Am Dienstag, den 01.08.2006, 11:46 +0100 schrieb Steve Kemp:
> Debian Security Advisory DSA 1131-1 security at debian.org
> http://www.debian.org/security/ Steve Kemp
> Aug 1st, 2006 http://www.debian.org/security/faq
>
> Package : apache
> Vulnerability : buffer overflow
> Problem-Type : remote
> Debian-specific: no
> CVE ID : CVE-2006-3747
> CERT advisory : VU#395412
> Debian Bug : 380231
apache auf pima, pomo, yuma, cusa und cupa aktualisiert.
Wegen des Updates musste der Webserver zwischen 9.50 und 9.55
neugestartet werden.
> For the stable distribution (sarge) this problem has been fixed in version 1.3.33-6sarge2.
changelog:
apache (1.3.33-6sarge2) stable-security; urgency=high
* Non-maintainer upload by The Security Team.
* Added patch 907_rewrite_off_by_one_CVE-2006-3747 to fix an off-by-one
bug in the mod_rewrite module. [CVE-2006-3747]
-- Steve Kemp <skx at debian.org> Fri, 28 Jul 2006 13:20:02 +0000
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : http://hostsharing.net/pipermail/technik/attachments/20060802/98ec8441/attachment.pgp
More information about the Technik
mailing list