drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in Apache
Name: |
Mehrere Probleme in Apache |
|
ID: |
201504-03 |
|
Distribution: |
Gentoo |
|
Plattformen: |
Keine Angabe |
|
Datum: |
Sa, 11. April 2015, 23:25 |
|
Referenzen: |
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0118
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0226
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0231
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5704 |
|
Applikationen: |
Apache |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --5IdSx5B3baEvqu26UleNw89vrnt8Fdmdb Content-Type: text/plain; charset=utf- Content-Transfer-Encoding: quoted-printable
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201504-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal Title: Apache: Multiple vulnerabilities Date: April 11, 2015 Bugs: #535948 ID: 201504-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis ========
Multiple vulnerabilities have been found in Apache HTTP Server, the worst of which could lead to arbitrary code execution.
Background ==========
Apache HTTP Server is one of the most popular web servers on the Internet.
Affected packages =================
------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-servers/apache < 2.2.29 >= 2.2.29
Description ===========
Multiple vulnerabilities have been discovered in Apache HTTP Server. Please review the CVE identifiers referenced below for details.
Impact ======
A remote attacker may be able to execute arbitrary code or cause a Denial of Service condition.
Workaround ==========
There is no known workaround at this time.
Resolution ==========
All Apache users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-servers/apache-2.2.29"
References ==========
[ 1 ] CVE-2014-0118 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0118 [ 2 ] CVE-2014-0226 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0226 [ 3 ] CVE-2014-0231 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0231 [ 4 ] CVE-2014-5704 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-5704
Availability ============
This GLSA and any updates to it are available for viewing at the Gentoo Security Website:
https://security.gentoo.org/glsa/201504-03
Concerns? =========
Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.
License =======
Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s).
The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.5
--5IdSx5B3baEvqu26UleNw89vrnt8Fdmdb Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org
iQIcBAEBCgAGBQJVKXuGAAoJEJ4qys4M5j+CLI8P/j3nr4i8x4pKPTHVXFINoNdD y++VlYEsV4VuY/URIAZLXb6vkjVKAa2ayCRS0rJhuXbHlagyBJewo0HiVBpIfwnk zEhIz1uFm/iqL1BAfhg2kRnNWxz5V0joTFtKS4XpovjKL/RKL7YJ0YtThY4pSlvV YTZ3OY+B/oWc7FQa3cqLfZU6mq1bq0ZjkwtqVFX4HaguoPnCT8eXDYR5imRtG6Y4 jN7k78Pz95kSzzP8uqiHTNoVuhZVCXwrRyde4GuZZo3+VUASFwVg9fEunx4HM2oV nx+FjwFnpPER3G1ykOL+3mIIH7AYtf/1fCA5gAY5lkZEZ7D2odUswmI0ayFOGL/u V3zxPoepiocm3RhWSwvXzNGnMVQWo/Ht1uprSTqss+FkSk9ORYdlfxMG61xpi4R1 LMFguzDeB+XHPzuDctMEDHw7vT95atOraqYnw7nNNo6bNELHNPSjDscxEDQVxXPR pSGlntMH6x3mH4mvGNMwaKRT0Ewl2zNch1qvpG8ontjcR5TBBcPk1VVRoHv8+3AX VT6a+hdYa0IWC1Nz0HNyZq8+3zuXaHCJ7nv1AR8KgX9/uzK2OYLeZB64LRDAytoA SggspGBem1sl5Uy05TJo4Xqs7C5tfEDo0Nf94E4dGc3fHF+DhUZA97nIinxnQ5gI X2QGyPiqp3BI2ZlWl6/w =J/jN -----END PGP SIGNATURE-----
--5IdSx5B3baEvqu26UleNw89vrnt8Fdmdb--
|
|
|
|