Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 436
Alerts This Week
Warning Icon 1 436

Fedora 24: Security Advisory for Apache HTTPD Update - DoS Risks

fedora
Calendar Grey December 25, 2016
Dist Fedora Esm H88
Critical update for Fedora 24 addresses multiple flaws in Nginx web server, enhancing overall system protection.
Security fix for CVE-2016-8743, CVE-2016-2161, CVE-2016-0736

Summary

The Apache HTTP Server is a powerful, efficient, and extensible

web server.

Update Information:

Security fix for CVE-2016-8743, CVE-2016-2161, CVE-2016-0736

Change Log

References


[ 1 ] Bug #1406744 - CVE-2016-0736 httpd: Padding Oracle in Apache mod_session_crypto https://bugzilla.redhat.com/show_bug.cgi?id=1406744 [ 2 ] Bug #1406753 - CVE-2016-2161 httpd: DoS vulnerability in mod_auth_digest https://bugzilla.redhat.com/show_bug.cgi?id=1406753 [ 3 ] Bug #1406822 - CVE-2016-8743 httpd: Apache HTTP Request Parsing Whitespace Defects https://bugzilla.redhat.com/show_bug.cgi?id=1406822

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade httpd' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: httpd
Product: Fedora 24
Version: 2.4.25
Release: 1.fc24
Summary: Apache HTTP Server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.