Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista

Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability

Solution:
This vulnerability does not affect Apache 2.0.45. Users are advised to upgrade. The Apache Software Foundation has also provided a patch for Apache 2.0.44.

Hewlett-Packard have released an advisory (HPSBUX0304-256) which contains information on obtaining and applying upgrades to address this issue. Customers are advised to upgrade to hp-ux apache-based web server v.1.0.03.01 or later.

Gentoo Linux has released an advisory. Users who have installed net-www/apache version 2 are advised to upgrade to apache-2.0.45 by issuing the following commands:

emerge sync
emerge \=net-www/apache-2.0.45
emerge clean

Apple MacOS X Server includes a vulnerable version of Apache. This issue is addressed in MacOS X Server 10.2.5. This update can be applied via the Software Update pane in System Preferences.

Fixes available:


HP HP-UX Apache-Based Web Server 1.0 .01

HP HP-UX Apache-Based Web Server 1.0 .02.01

HP HP-UX Apache-Based Web Server 1.0.1 .01

Apache Software Foundation Apache 2.0

Apache Software Foundation Apache 2.0 a9

Apache Software Foundation Apache 2.0.28

Apache Software Foundation Apache 2.0.32

Apache Software Foundation Apache 2.0.35

Apache Software Foundation Apache 2.0.36

Apache Software Foundation Apache 2.0.37

Apache Software Foundation Apache 2.0.38

Apache Software Foundation Apache 2.0.39

Apache Software Foundation Apache 2.0.40

Apache Software Foundation Apache 2.0.41

Apache Software Foundation Apache 2.0.42

HP Apache-Based Web Server 2.0.43 .04

HP Apache-Based Web Server 2.0.43 .00

Apache Software Foundation Apache 2.0.43

Apache Software Foundation Apache 2.0.44







 

Privacy Statement
Copyright 2007, SecurityFocus