Summary: | net-www/apache-1.3: buffer overflow in mod_include (CAN-2004-0940) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Matthias Geerdsen (RETIRED) <vorlon> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | apache-bugs |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://www.apacheweek.com/features/security-13 | ||
Whiteboard: | A3 [glsa] vorlon | ||
Package list: | Runtime testing required: | --- |
Description
Matthias Geerdsen (RETIRED)
2004-10-22 09:12:34 UTC
apache team, pls review/patch as appropriate commited as 1.3.32-r1 thx stuart and tigger arches, pls test apache-1.3.32-r1 and mark stable if possible current KEYWORDS="~x86 ~ppc ~sparc ~alpha ~hppa ~amd64 ~ia64 ~mips" target KEYWORDS="x86 ppc sparc alpha hppa amd64 ia64 mips" Stable on amd64 Stable on sparc stable on ppc Stable on alpha. Could apache maintainers or someone on x86 test and mark x86 stable ? FYI, Apache-1.3.33 is now in the tree. Upstream haven't released a corresponding mod_ssl yet, however, so this ebuild is masked for the moment. At this rate of Apache releases, we should start thinking about a dedicated apache security & arch test group ;-) Best regards, Stu arches, mod_ssl-2.8.21 is also needed to be marked stable current KEYWORDS="x86 ~ppc ~sparc ~alpha ~hppa ~mips" target KEYWORDS="x86 ppc sparc alpha hppa mips" Stable on sparc. Stable on ppc. Stable on alpha. mod_ssl-2.8.21 still missing amd64 to test and mark stable otherwise ready for GLSA stable on amd64 GLSA 200411-03 hppa, ia64 and mips, please mark stable to benefit from GLSA mips stable. |