Bug 52802

Summary:	net-www/apache-2* mod_ssl + net-www/mod_ssl vulnerability
Product:	Gentoo Security	Reporter:	Wolfram Schlich (RETIRED) <wschlich>
Component:	GLSA Errors	Assignee:	Gentoo Security <security>
Status:	RESOLVED DUPLICATE
Severity:	normal
Priority:	High
Version:	unspecified
Hardware:	All
OS:	All
Whiteboard:
Package list:		Runtime testing required:	---

Description Wolfram Schlich (RETIRED) gentoo-dev

2004-06-02 11:52:11 UTC

http://www.securityfocus.com/advisories/6785
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0488

patch: http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_kernel.c?r1=1.105&r2=1.106

Comment 1 Wolfram Schlich (RETIRED) gentoo-dev

2004-06-02 11:57:22 UTC

german advisory regarding both apache1- and apache2-mod_ssl:
http://CERT.Uni-Stuttgart.DE/ticker/article.php?mid=1205

Comment 2 Thierry Carrez (RETIRED) gentoo-dev

2004-06-02 12:08:49 UTC


*** This bug has been marked as a duplicate of 51368 ***