SciLinux: CVE-2010-0434 Low: httpd SL4.x i386/x86_64
Summary
A use-after-free flaw was discovered in the way the Apache HTTP Serverhandled request headers in subrequests. In configurations wheresubrequests are used, a multithreaded MPM (Multi-Processing Module)could possibly leak information from other requests in request replies.(CVE-2010-0434)This update also fixes the following bug:* a bug was found in the mod_dav module. If a PUT request for anexisting file failed, that file would be unexpectedly deleted and a"Could not get next bucket brigade" error logged. With this update,failed PUT requests no longer cause mod_dav to delete files, whichresolves this issue. (BZ#572932)As well, this update adds the following enhancement:* with the updated openssl packages from RHSA-2010:0163 installed,mod_ssl will refuse to renegotiate a TLS/SSL connection with anunpatched client that does not support RFC 5746. This update adds the"SSLInsecureRenegotiation" configuration directive. If this directive isenabled, mod_ssl will renegotiate insecurely with unpatched clients.(BZ#575805)Refer to the following Red Hat Knowledgebase article for more detailsabout the changed mod_ssl behavior:After installing the updated packages, the httpd daemon must berestarted for the update to take effect.