apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
Description:
Apache ChangeLog reports:
Integer overflow in the ap_proxy_send_fb function in
proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before
1.3.42 on 64-bit platforms allows remote origin servers to cause a
denial of service (daemon crash) or possibly execute arbitrary code
via a large chunk size that triggers a heap-based buffer overflow.
References:
Affects:
- apache <1.3.42
- apache+mod_perl <1.3.42
- apache+ipv6 <1.3.42
- apache_fp >=0
- ru-apache <1.3.42+30.23
- ru-apache+mod_ssl <1.3.42
- apache+ssl <1.3.42.1.57_2
- apache+mod_ssl <1.3.41+2.8.27_2
- apache+mod_ssl+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_accel <1.3.41+2.8.27_2
- apache+mod_ssl+mod_accel+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_accel+mod_deflate <1.3.41+2.8.27_2
- apache+mod_ssl+mod_accel+mod_deflate+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_deflate <1.3.41+2.8.27_2
- apache+mod_ssl+mod_deflate+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp+mod_accel <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp+mod_accel+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp+mod_deflate <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp+mod_deflate+ipv6 <1.3.41+2.8.27_2
- apache+mod_ssl+mod_snmp+mod_accel+mod_deflate+ipv6 <1.3.41+2.8.27_2
portaudit: apache -- Prevent chunk-size integer overflow on platforms where sizeof(int) < sizeof(long)
Disclaimer: The data contained on this page is derived from the VuXML document,
please refer to the the original document for copyright information. The author of
portaudit makes no claim of authorship or ownership of any of the information contained herein.
If you have found a vulnerability in a FreeBSD port not listed in the
database, please contact
the FreeBSD Security Team. Refer to
"FreeBSD Security
Information" for more information.
Oliver Eikemeier <eik@FreeBSD.org>
