Ubuntu Security Update USN-6885-5: Apache HTTP Server vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,780
Reaction score
74
Credits
-1,257
USN-6885-1 fixed vulnerabilities in Apache. This update provides the corresponding updates for Ubuntu 14.04 LTS. Original advisory details: Orange Tsai discovered that the Apache HTTP Server mod_rewrite module incorrectly handled certain substitutions. A remote attacker could possibly use this issue to execute scripts in directories not directly reachable by any URL, or cause a denial of service. Some environments may require using the new UnsafeAllow3F flag to handle unsafe substitutions. (CVE-2024-38474, CVE-2024-38475)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-6885-6: Apache HTTP Server regression
Replies
0
Views
296
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-2: Apache HTTP Server regression
Replies
0
Views
47
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities
Replies
0
Views
58
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-6885-4: Apache HTTP Server regression
Replies
0
Views
273
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8239-1: Apache HTTP Server vulnerabilities
Replies
0
Views
159
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 3,234 (members: 6, guests: 3,228)

Latest posts

Top