Red Hat Stronghold RHSA-2002:118-06 Critical Apache DoS Risk
red hat
June 20, 2002
The Apache Web server contains a security vulnerability which can be usedto launch a denial of service attack, or in some cases, allow remote codeexecution.
Solution
We have backported the security fix from the official Apache 1.3.26
release. The patch and instructions on how to apply it are available
from the Stronghold resource center at
Stronghold 3: Hat.com/sh3/errata-2002-118
Stronghold 4: Hat.com/sh4/errata-2002-118 Updated packages will also be made available shortly from the same URLs
5. Bug IDs fixed ( for more info):
6. RPMs required:
7. Verification:
MD5 sum Package Name
These packages are GPG signed by Red Hat, Inc. for security. Our key
is available at:
About
You can verify each package with the following command:
rpm --checksig
If you only wish to verify that each package has not been corrupted or
tampered with, examine only the md5sum with the following command:
rpm --checksig --nogpg
Summary
References
apache Hat.com/sh3/errata-2002-118 Hat.com/sh4/errata-2002-118 CVE -CVE-2002-0392 Copyright(c) 2000, 2001, 2002 Red Hat, Inc. `
Package List
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Advisory ID: RHSA-2002:118-06
Issue date: 2002-06-20
Updated on: 2002-06-20
Product: Stronghold Cross Platform
Keywords: apache chunked encoding DoS
Cross references:
Obsoletes:
Topic
Relevant Releases Architectures
Bugs Fixed
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!