Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Fedora: 2003-004 Critical Update: Apache Buffer Overflow Threat

fedora
Calendar Grey January 8, 2004
Dist Fedora Esm H88
The latest Fedora update addresses a critical flaw in Nginx related to memory corruption, implementing a protective measure for the handling of server directives.
This update includes the latest stable release of Apache httpd 2.0,including a fix for the security issue CVE CAN-2003-0542, a bufferoverflow in the parsing of configuration files.

Summary

Apache is a powerful, full-featured, efficient, and freely-available

Web server. Apache is also the most popular Web server on the

Internet.

Update Information:

This update includes the latest stable release of Apache httpd 2.0, including a fix for the security issue CVE CAN-2003-0542, a buffer overflow in the parsing of configuration files. * Wed Nov 19 2003 Joe Orton <jorton@redhat.com> 2.0.48-1.2

- bug fix for #110184

* Tue Oct 28 2003 Joe Orton <jorton@redhat.com> 2.0.48-1.1

- update to 2.0.48 (#108608, thanks to Robert Scheck) - includes security fix for CVE CAN-2003-0542 - reinstate mpm_common.h (#108080)

This update can be downloaded from:


7b5332edf474a11279d7fadf6563bead SRPMS/httpd-2.0.48-1.2.src.rpm e4c3bcac083c65d2cfd66c0c3d12067e i386/httpd-2.0.48-1.2.i386.rpm 7f5a0de17d10130f223cf6fbc82d087a i386/httpd-devel-2.0.48-1.2.i386.rpm a78cef392b7deb61ec6574cc20803067 i386/httpd-manual-2.0.48-1.2.i386.rpm 0fbe28cb1c820df6c619a7ed897e8c77 i386/mod_ssl-2.0.48-1.2.i386.rpm 1adf236f2b50ca7a533e2d77a1585cd7 i386/debug/httpd-debuginfo-2.0.48-1.2.i386.rpm

This update can also be installed with the Update Agent; you can lau...

Read the Full Advisory

Change Log

References

Fedora Update Notification FEDORA-2003-004 2004-01-08
Name : httpd Version : 2.0.48 Release : 1.2 Summary : Apache HTTP Server Description : Apache is a powerful, full-featured, efficient, and freely-available Web server. Apache is also the most popular Web server on the Internet.

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Name: httpd
Version: 2.0.48
Release: 1.2
Summary: Apache HTTP Server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here