Debian DSA 532-2: Critical Libapache-Mod-SSL Remote Execution Risks
debian
July 29, 2004
This patch fixes a buffer overflow and a format string vulnerability in libapache-mod-ssl, both of which allow execution of arbitrary code.
Summary
Two vulnerabilities were discovered in libapache-mod-ssl:
CAN-2004-0488 - Stack-based buffer overflow in the
ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl,
when mod_ssl is configured to trust the issuing CA, may allow remote
attackers to execute arbitrary code via a client certificate with a
long subject DN.
CAN-2004-0700 - Format string vulnerability in the ssl_log function
in ssl_engine_log.c in mod_ssl 2.8.19 for Apache 1.3.31 may allow
remote attackers to execute arbitrary messages via format string
specifiers in certain log messages for HTTPS.
This is a revision to DSA 531-1, due to a problem with a documentation
symlink in the previous version of the i386 binary package.
For the current stable distribution (woody), these problems have been
fixed in version 2.8.9-2.4.
For the unstable distribution (sid), CAN-2004-0488 was fixed in
version 2.8.18, and CAN-2004-0700 will be fixed soon.
We recommend that you update your libapache-mod-ssl package.
Upgrade Inst...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: libapache-mod-ssl
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!