OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA16299] Fedora update for httpd

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Aug 03 2005 - 02:50:34 CDT

----------------------------------------------------------------------

Bist Du interessiert an einem neuen Job in IT-Sicherheit?

Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/

----------------------------------------------------------------------

TITLE:
Fedora update for httpd

SECUNIA ADVISORY ID:
SA16299

VERIFY ADVISORY:
http://secunia.com/advisories/16299/

CRITICAL:
Less critical

IMPACT:
Security Bypass, Cross Site Scripting, Manipulation of data, DoS

WHERE:
From remote

OPERATING SYSTEM:
Fedora Core 3
http://secunia.com/product/4222/
Fedora Core 4
http://secunia.com/product/5251/

DESCRIPTION:
Fedora has issued an update for httpd. This fixes two
vulnerabilities, which can be exploited by malicious people to
potentially cause a DoS (Denial of Service) and conduct HTTP request
smuggling attacks.

For more information:
SA14530

SOLUTION:
Apply updated packages.

Fedora Core 3:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

ebb1ad874f28ba67a5836ff3618de90d SRPMS/httpd-2.0.53-3.2.src.rpm
dd1929bd75029939f7f22da4eb090061 x86_64/httpd-2.0.53-3.2.x86_64.rpm
30bb95c39ec0aee58daa16ddf650d1c4
x86_64/httpd-devel-2.0.53-3.2.x86_64.rpm
485ad48e6b29bc4994df3e45b6b24418
x86_64/httpd-manual-2.0.53-3.2.x86_64.rpm
de1462c24a3833a58527c479c5a48b3e
x86_64/mod_ssl-2.0.53-3.2.x86_64.rpm
9c3c18b386cac3b7c6bfc09690590f49
x86_64/httpd-suexec-2.0.53-3.2.x86_64.rpm
402906de4433e1d93c294ccfec8d607e
x86_64/debug/httpd-debuginfo-2.0.53-3.2.x86_64.rpm
e665c28d559c855a26807eceabc0d2c8 i386/httpd-2.0.53-3.2.i386.rpm
31eaee49409f48d47a2416532f1c6b55
i386/httpd-devel-2.0.53-3.2.i386.rpm
62bce7ff6a437e447d84e77c9e1c6127
i386/httpd-manual-2.0.53-3.2.i386.rpm
4c46b1d02b1f05d1799aa2b9b30156ca i386/mod_ssl-2.0.53-3.2.i386.rpm
7d91cb20ff7f748169f1c0bad5b56440
i386/httpd-suexec-2.0.53-3.2.i386.rpm
90152490a7c19bdfaf4f3030b141f414
i386/debug/httpd-debuginfo-2.0.53-3.2.i386.rpm

Fedora Core 4:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

4fa67f7a6b0bf8fe8e2f97966b9b1dfd SRPMS/httpd-2.0.54-10.1.src.rpm
d7a168567f442382f3cae489de25aa98 ppc/httpd-2.0.54-10.1.ppc.rpm
0b3f4d2e74888b09d3a6ec9e910addde ppc/httpd-devel-2.0.54-10.1.ppc.rpm
e577a7b970af1b4b402e937fd09a0772
ppc/httpd-manual-2.0.54-10.1.ppc.rpm
929f74cef89f5a6e2b576c547d02b0eb ppc/mod_ssl-2.0.54-10.1.ppc.rpm
f3f46a5c94fa4b65098ca7b1d1ac039c
ppc/debug/httpd-debuginfo-2.0.54-10.1.ppc.rpm
591f4801f63f1727f7c83c53b7e5c045 x86_64/httpd-2.0.54-10.1.x86_64.rpm
de5248a0690b7e254a7ae50895a5514d
x86_64/httpd-devel-2.0.54-10.1.x86_64.rpm
e8bdb8e4da7bcaf05542daee46583f97
x86_64/httpd-manual-2.0.54-10.1.x86_64.rpm
902b4ab1168c79ca1a6f8b285441c8e6
x86_64/mod_ssl-2.0.54-10.1.x86_64.rpm
ce652f5a0f5643e9852621af103e1d59
x86_64/debug/httpd-debuginfo-2.0.54-10.1.x86_64.rpm
1a6a395ea6daf8c289de466c6024847b i386/httpd-2.0.54-10.1.i386.rpm
4d89b220d743076969439276aa336d00
i386/httpd-devel-2.0.54-10.1.i386.rpm
eee01db93e6db9de5feddec6a7b532ca
i386/httpd-manual-2.0.54-10.1.i386.rpm
41f2057cd9b3f4db3709db146b43d456 i386/mod_ssl-2.0.54-10.1.i386.rpm
01ec6253ecb0e6c1e7ff990998e0b98a
i386/debug/httpd-debuginfo-2.0.54-10.1.i386.rpm

OTHER REFERENCES:
SA14530:
http://secunia.com/advisories/14530/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------