Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 12.04 ESM: USN-3370-2 Moderate: Apache HTTP Server Crash Risk

ubuntu
Calendar Grey August 1, 2017
Dist Ubuntu Esm H88
Stay informed about the Ubuntu 12.04 ESM security update addressing risks associated with Apache HTTP Server vulnerabilities
Apache HTTP Server could be made to crash or leak sensitive information if it received specially crafted network traffic.

Summary

Apache HTTP Server could be made to crash or leak sensitive information

if it received specially crafted network traffic.

Software Description:

- apache2: Apache HTTP server

Details:

USN-3370-1 fixed a vulnerability in Apache HTTP Server.

This update provides the corresponding update for Ubuntu 12.04 ESM.

Original advisory details:

 Robert Święcki discovered that the Apache HTTP Server mod_auth_digest

 module incorrectly cleared values when processing certain requests. A

 remote attacker could use this issue to cause the server to crash,

 resulting in a denial or service, or possibly obtain sensitive

 information.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  apache2.2-bin                   2.2.22-1ubuntu1.13

In general, a standard system update will make all the necessary
changes.

References

  https://ubuntu.com/security/notices/USN-3370-2

  https://ubuntu.com/security/notices/USN-3370-1

  CVE-2017-9788

August 01, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here