Описание
ELSA-2014-1803: mod_auth_mellon security update (IMPORTANT)
[0.8.0-3]
- CVE-2014-8566 CVE-2014-8567
- Resolves: bz1157283
- Resolves: bz1157956
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
mod_auth_mellon
0.8.0-3.el6_6
Oracle Linux i686
mod_auth_mellon
0.8.0-3.el6_6
Связанные CVE
Связанные уязвимости
The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.
The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.
The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.
The mod_auth_mellon module before 0.8.1 allows remote attackers to cau ...
The mod_auth_mellon module before 0.8.1 allows remote attackers to obtain sensitive information or cause a denial of service (segmentation fault) via unspecified vectors related to a "session overflow" involving "sessions overlapping in memory."