drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Preisgabe von Informationen in Apache (Aktualisierung)
| Name: |
Preisgabe von Informationen in Apache (Aktualisierung) |
|
| ID: |
USN-3425-2 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 12.04 ESM |
|
| Datum: |
Di, 24. Oktober 2017, 22:52 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9798 |
|
| Applikationen: |
Apache |
|
| Update von: |
Preisgabe von Informationen in Apache |
|
Originalnachricht |
--===============0943700067031550711==
Content-Type: multipart/signed; micalg="pgp-sha256";
protocol="application/pgp-signature";
boundary="=-cDQFKQvqJB4ORqX8vAc9"
--=-cDQFKQvqJB4ORqX8vAc9
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-3425-2
October 24, 2017
apache2 vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
Apache HTTP Server could be made to expose sensitive information over
the network.
Software Description:
- apache2: Apache HTTP server
Details:
USN-3425-1 fixed a vulnerability in Apache HTTP Server. This update
provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
 Hanno Böck discovered that the Apache HTTP Server incorrectly handled
 Limit directives in .htaccess files. In certain configurations, a
 remote attacker could possibly use this issue to read arbitrary server
 memory, including sensitive information. This issue is known as
 Optionsbleed.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
 apache2.2-bin                   2.2.22-1ubuntu1.14
In general, a standard system update will make all the necessary
changes.
References:
 https://www.ubuntu.com/usn/usn-3425-2
 https://www.ubuntu.com/usn/usn-3425-1
 CVE-2017-9798
--ÜDQFKQvqJB4ORqX8vAc9
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=07hl
-----END PGP SIGNATURE-----
--=-cDQFKQvqJB4ORqX8vAc9--
--===============0943700067031550711==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5
LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl
IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj
dXJpdHktYW5ub3VuY2UK
--===============0943700067031550711==--
|
|
|
|
