oval:org.mitre.oval:def:13813

Definition Id: oval:org.mitre.oval:def:13813

Oval ID:	oval:org.mitre.oval:def:13813
Title:	USN-787-1 -- apache2 vulnerabilities
Description:	Matthew Palmer discovered an underflow flaw in apr-util as included in Apache. An attacker could cause a denial of service via application crash in Apache using a crafted SVNMasterURI directive, .htaccess file, or when using mod_apreq2. This issue only affected Ubuntu 6.06 LTS. Sander de Boer discovered that mod_proxy_ajp would reuse connections when a client closed a connection without sending a request body. A remote attacker could exploit this to obtain sensitive response data. This issue only affected Ubuntu 9.04. Jonathan Peatfield discovered that Apache did not process Includes options correctly. With certain configurations of Options and AllowOverride, a local attacker could use an .htaccess file to override intended restrictions and execute arbitrary code via a Server-Side-Include file. This issue affected Ubuntu 8.04 LTS, 8.10 and 9.04. It was discovered that the XML parser did not properly handle entity expansion. A remote attacker could cause a denial of service via memory resource consumption by sending a crafted request to an Apache server configured to use mod_dav or mod_dav_svn. This issue only affected Ubuntu 6.06 LTS. C. Michael Pilato discovered an off-by-one buffer overflow in apr-util when formatting certain strings. For big-endian machines, a remote attacker could cause a denial of service or information disclosure leak. All other architectures for Ubuntu are not considered to be at risk. This issue only affected Ubuntu 6.06 LTS
Family:	unix	Class:	patch
Reference(s):	USN-787-1 CVE-2009-0023 CVE-2009-1191 CVE-2009-1195 CVE-2009-1955 CVE-2009-1956	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 9.04 Ubuntu 6.06 Ubuntu 8.10	Product(s):	apache2
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section apache2-mpm-perchild DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-doc DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-src DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2 DPKG is earlier than 2.2.8-1ubuntu0.8 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section apache2-utils DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-mpm-worker DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2.2-common DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-mpm-prefork DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-threaded-dev DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-mpm-event DPKG is earlier than 2.2.8-1ubuntu0.8 AND apache2-prefork-dev DPKG is earlier than 2.2.8-1ubuntu0.8 OR Release section Ubuntu 9.04 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section apache2-doc DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-src DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2 DPKG is earlier than 2.2.11-2ubuntu2.1 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section apache2-utils DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-mpm-worker DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2.2-common DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-suexec-custom DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-suexec DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-mpm-prefork DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-threaded-dev DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-mpm-event DPKG is earlier than 2.2.11-2ubuntu2.1 AND apache2-prefork-dev DPKG is earlier than 2.2.11-2ubuntu2.1 OR Release section Ubuntu 6.06 is installed AND Architecture section Architecture independent section Installed architecture is all AND apache2-doc DPKG is earlier than 2.0.55-4ubuntu2.5 OR Architecture depended section Supported architectures section Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section libapr0 DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-utils DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-mpm-worker DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-mpm-perchild DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-common DPKG is earlier than 2.0.55-4ubuntu2.5 AND libapr0-dev DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2 DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-threaded-dev DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-mpm-prefork DPKG is earlier than 2.0.55-4ubuntu2.5 AND apache2-prefork-dev DPKG is earlier than 2.0.55-4ubuntu2.5 OR Release section Ubuntu 8.10 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section apache2-doc DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-src DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2 DPKG is earlier than 2.2.9-7ubuntu3.1 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section apache2-utils DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-mpm-worker DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2.2-common DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-suexec-custom DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-suexec DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-mpm-prefork DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-threaded-dev DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-mpm-event DPKG is earlier than 2.2.9-7ubuntu3.1 AND apache2-prefork-dev DPKG is earlier than 2.2.9-7ubuntu3.1

Definition Id: oval:org.mitre.oval:def:13250

Oval ID:	oval:org.mitre.oval:def:13250
Title:	Ubuntu 8.04 is installed
Description:	Ubuntu 8.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.04	Version:	3
Platform(s):	Ubuntu 8.04	Product(s):
Definition Synopsis:
Ubuntu 8.04 is installed
Referenced By:
oval:org.mitre.oval:def:13813

Definition Id: oval:org.mitre.oval:def:13319

Oval ID:	oval:org.mitre.oval:def:13319
Title:	Ubuntu 6.06 is installed
Description:	Ubuntu 6.06 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:6.06	Version:	3
Platform(s):	Ubuntu 6.06	Product(s):
Definition Synopsis:
Ubuntu 6.06 is installed
Referenced By:
oval:org.mitre.oval:def:13813

Definition Id: oval:org.mitre.oval:def:13306

Oval ID:	oval:org.mitre.oval:def:13306
Title:	Ubuntu 8.10 is installed
Description:	Ubuntu 8.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.10	Version:	3
Platform(s):	Ubuntu 8.10	Product(s):
Definition Synopsis:
Ubuntu 8.10 is installed
Referenced By:
oval:org.mitre.oval:def:13813

Definition Id: oval:org.mitre.oval:def:12669

Oval ID:	oval:org.mitre.oval:def:12669
Title:	Ubuntu 9.04 is installed
Description:	Ubuntu 9.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:9.04	Version:	5
Platform(s):	Ubuntu 9.04	Product(s):
Definition Synopsis:
Ubuntu 9.04 is installed
Referenced By:
oval:org.mitre.oval:def:13813

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0401s

Facebook rss twitter linkedin mail