DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 12th May 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,141
Thanked 182 Times in 149 Posts
Default Apache HTTP Server update fixes remote DoS issue - Update

From http://www.h-online.com/security/new...e-1241951.html

Quote:
The Apache HTTP Server developers have released version 2.2.18 of the eponymous web server as a bug fix and security fix release. The security fix is needed because of a vulnerability to a Denial of Service (DoS) attack; the vulnerability is rated as moderate.

A bug in Apache Portable Runtime's (APR) apr_fnmatch() function could be provoked into triggering recursive string matching and thus causing excessive CPU usage and exhausting memory.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
PostgreSQL security update fixes a buffer overrun J65nko News 0 1st February 2011 06:37 PM
Update fixes DoS vulnerability in DHCPv6 server J65nko News 0 28th January 2011 05:52 PM
Samba update fixes DoS vulnerabilities J65nko News 0 18th May 2010 06:03 PM
Update for Apache 2.2 web server closes various security holes J65nko News 0 9th March 2010 08:50 PM
Pidgin update fixes security vulnerabilities J65nko News 0 19th February 2010 06:53 PM


All times are GMT. The time now is 01:21 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick