Updated apache packages fix security vulnerabilities
Publication date: 19 Mar 2014Modification date: 19 Mar 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2013-6438 , CVE-2014-0098
Description
Apache HTTPD before 2.4.9 was vulnerable to a denial of service in
mod_dav when handling DAV_WRITE requests (CVE-2013-6438).
Apache HTTPD before 2.4.9 was vulnerable to a denial of service when
logging cookies (CVE-2014-0098).
References
SRPMS
3/core
- apache-2.4.4-7.6.mga3
4/core
- apache-2.4.7-5.1.mga4