Paketname
apache-mod_fcgid
Datum
2013-10-18
Advisory ID
MDVSA-2013:256
Betroffene Versionen
MBS1 x86_64

Problembeschreibung

Updated apache-mod_fcgid package fixes security vulnerability:

Apache mod_fcgid before version 2.3.9 fails to perform adequate
boundary checks on user-supplied input. This may allow a remote
attacker to cause a heap-based buffer overflow, resulting in a denial
of service or potentially allowing the execution of arbitrary code
(CVE-2013-4365).

Aktualisierte Pakete

MBS1 x86_64

 aeaa5422cba470c3e5b38cb2db7eaefa  mbs1/x86_64/apache-mod_fcgid-2.3.6-4.1.mbs1.x86_64.rpm 
 ed0f63d1db9e73e3d731a16fdb89d023  mbs1/SRPMS/apache-mod_fcgid-2.3.6-4.1.mbs1.src.rpm

Referenzen