oval:org.mitre.oval:def:13227

Definition Id: oval:org.mitre.oval:def:13227

Oval ID:	oval:org.mitre.oval:def:13227
Title:	DSA-2035-1 apache2 -- multiple issues
Description:	Two issues have been found in the Apache HTTPD web server: CVE-2010-0408 mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service. CVE-2010-0434 A flaw in the core subrequest process code was found, which could lead to a daemon crash or disclosure of sensitive information if the headers of a subrequest were modified by modules such as mod_headers. For the stable distribution, these problems have been fixed in version 2.2.9-10+lenny7. For the testing distribution and the unstable distribution, these problems have been fixed in version 2.2.15-1. This advisory also provides updated apache2-mpm-itk packages which have been recompiled against the new apache2 packages. We recommend that you upgrade your apache2 and apache2-mpm-itk packages.
Family:	unix	Class:	patch
Reference(s):	DSA-2035-1 CVE-2010-0408 CVE-2010-0434	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	apache2
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section apache2-doc DPKG is earlier than 2.2.9-10+lenny7 AND apache2-src DPKG is earlier than 2.2.9-10+lenny7 AND apache2 DPKG is earlier than 2.2.9-10+lenny7 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section apache2-threaded-dev DPKG is earlier than 2.2.9-10+lenny7 AND apache2-utils DPKG is earlier than 2.2.9-10+lenny7 AND apache2-mpm-worker DPKG is earlier than 2.2.9-10+lenny7 AND apache2.2-common DPKG is earlier than 2.2.9-10+lenny7 AND apache2-suexec-custom DPKG is earlier than 2.2.9-10+lenny7 AND apache2-suexec DPKG is earlier than 2.2.9-10+lenny7 AND apache2-mpm-prefork DPKG is earlier than 2.2.9-10+lenny7 AND apache2-dbg DPKG is earlier than 2.2.9-10+lenny7 AND apache2-mpm-event DPKG is earlier than 2.2.9-10+lenny7 AND apache2-prefork-dev DPKG is earlier than 2.2.9-10+lenny7 AND apache2-mpm-itk DPKG is earlier than 2.2.6-02-1+lenny2+b3 OR Supported platform section Installed architecture is alpha AND apache2-mpm-itk DPKG is earlier than 2.2.6-02-1+lenny2+b4

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:13227

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0326s

Facebook rss twitter linkedin mail