Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog
Консоль
Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog

exploitDog

suse-cvrf Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

SUSE-SU-2021:14749-1

ΠžΠΏΡƒΠ±Π»ΠΈΠΊΠΎΠ²Π°Π½ΠΎ: 17 июн. 2021
Π˜ΡΡ‚ΠΎΡ‡Π½ΠΈΠΊ: suse-cvrf

ОписаниС

Security update for apache2

This update for apache2 fixes the following issues:

  • fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression
  • fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest

Бписок ΠΏΠ°ΠΊΠ΅Ρ‚ΠΎΠ²

SUSE Linux Enterprise Point of Sale 11 SP3
apache2-2.2.34-70.35.1
apache2-devel-2.2.34-70.35.1
apache2-doc-2.2.34-70.35.1
apache2-example-pages-2.2.34-70.35.1
apache2-prefork-2.2.34-70.35.1
apache2-utils-2.2.34-70.35.1
apache2-worker-2.2.34-70.35.1
SUSE Linux Enterprise Server 11 SP4-LTSS
apache2-2.2.34-70.35.1
apache2-doc-2.2.34-70.35.1
apache2-example-pages-2.2.34-70.35.1
apache2-prefork-2.2.34-70.35.1
apache2-utils-2.2.34-70.35.1
apache2-worker-2.2.34-70.35.1

Бсылки

ОписаниС

Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow

Π—Π°Ρ‚Ρ€ΠΎΠ½ΡƒΡ‚Ρ‹Π΅ ΠΏΡ€ΠΎΠ΄ΡƒΠΊΡ‚Ρ‹
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-devel-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-doc-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-example-pages-2.2.34-70.35.1
Бсылки

ОписаниС

Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF'

Π—Π°Ρ‚Ρ€ΠΎΠ½ΡƒΡ‚Ρ‹Π΅ ΠΏΡ€ΠΎΠ΄ΡƒΠΊΡ‚Ρ‹
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-devel-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-doc-2.2.34-70.35.1
SUSE Linux Enterprise Point of Sale 11 SP3:apache2-example-pages-2.2.34-70.35.1
Бсылки
Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ SUSE-SU-2021:14749-1