Advisories ยป MGASA-2014-0135

Updated apache packages fix security vulnerabilities

Publication date: 19 Mar 2014
Modification date: 19 Mar 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2013-6438 , CVE-2014-0098

Description

Apache HTTPD before 2.4.9 was vulnerable to a denial of service in
mod_dav when handling DAV_WRITE requests (CVE-2013-6438).

Apache HTTPD before 2.4.9 was vulnerable to a denial of service when
logging cookies (CVE-2014-0098).
                

References

SRPMS

3/core

4/core