Gentoo: GLSA-202303-01 Low: Nginx mod_security Denial of Service
gentoo
January 27, 2004
Apache's mod_python module could crash the httpd process if a specific, malformed query string was sent.
Summary
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gentoo Linux Security Advisory GLSA 200401-03 ~ https://security.gentoo.org/
~ Severity: Low ~ Title: Apache mod_python Denial of Service vulnerability ~ Date: January 27, 2004 ~ Bugs: #39154 ~ ID: 200401-03
Synopsis ======= Apache's mod_python module could crash the httpd process if a specific, malformed query string was sent.
Background ========= Mod_python is an Apache module that embeds the Python interpreter within the server allowing Python-based web-applications to be created.
========== The Apache Foundation has reported that mod_python may be prone to Denial of Service attacks when handling a malformed query. Mod_python 2.7.9 was released to fix the vulnerability, however, because the vulnerability has not been fully fixed, version 2.7.10 has been released.
Users of mod_python 3.0.4 are not affected by this vulnerability.
Impact ===== Alth...Read the Full Advisory
Topics Covered
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Severity
low
Lowest
Low
Medium
High
Critical
Topics Covered
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!