---------------------------------------------------------------------Fedora Update Notification
FEDORA-2005-639
2005-08-02
---------------------------------------------------------------------Product     : Fedora Core 4
Name        : httpd
Version     : 2.0.54                      
Release     : 10.1                  
Summary     : Apache HTTP Server
Description :
The Apache HTTP Server is a powerful, full-featured, efficient, and
freely-available Web server. The Apache HTTP Server is also the
most popular Web server on the Internet.

---------------------------------------------------------------------Update Information:

This update security fixes for CVE CAN-2005-2088 and CVE
CAN-2005-1268, along with some minor bug fixes.
---------------------------------------------------------------------* Tue Jul 26 2005 Joe Orton  2.0.54-10.1
- add security fix for C-L vs T-E handling (#162245, CVE CAN-2005-2088)
- mod_ssl: add security fix for CRL overflow (CVE CAN-2005-1268)
- mod_ssl: fix to enable output buffering (upstream #35279)
- mod_include: fix variable corruption in nested includes (upstream #12655)
- mod_auth_digest: fix hostinfo comparison in CONNECT requests


---------------------------------------------------------------------This update can be downloaded from:
  
4fa67f7a6b0bf8fe8e2f97966b9b1dfd  SRPMS/httpd-2.0.54-10.1.src.rpm
d7a168567f442382f3cae489de25aa98  ppc/httpd-2.0.54-10.1.ppc.rpm
0b3f4d2e74888b09d3a6ec9e910addde  ppc/httpd-devel-2.0.54-10.1.ppc.rpm
e577a7b970af1b4b402e937fd09a0772  ppc/httpd-manual-2.0.54-10.1.ppc.rpm
929f74cef89f5a6e2b576c547d02b0eb  ppc/mod_ssl-2.0.54-10.1.ppc.rpm
f3f46a5c94fa4b65098ca7b1d1ac039c  ppc/debug/httpd-debuginfo-2.0.54-10.1.ppc.rpm
591f4801f63f1727f7c83c53b7e5c045  x86_64/httpd-2.0.54-10.1.x86_64.rpm
de5248a0690b7e254a7ae50895a5514d  x86_64/httpd-devel-2.0.54-10.1.x86_64.rpm
e8bdb8e4da7bcaf05542daee46583f97  x86_64/httpd-manual-2.0.54-10.1.x86_64.rpm
902b4ab1168c79ca1a6f8b285441c8e6  x86_64/mod_ssl-2.0.54-10.1.x86_64.rpm
ce652f5a0f5643e9852621af103e1d59 
x86_64/debug/httpd-debuginfo-2.0.54-10.1.x86_64.rpm
1a6a395ea6daf8c289de466c6024847b  i386/httpd-2.0.54-10.1.i386.rpm
4d89b220d743076969439276aa336d00  i386/httpd-devel-2.0.54-10.1.i386.rpm
eee01db93e6db9de5feddec6a7b532ca  i386/httpd-manual-2.0.54-10.1.i386.rpm
41f2057cd9b3f4db3709db146b43d456  i386/mod_ssl-2.0.54-10.1.i386.rpm
01ec6253ecb0e6c1e7ff990998e0b98a  i386/debug/httpd-debuginfo-2.0.54-10.1.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
-----------------------------------------------------------------------fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

Fedora Core 4 Update: httpd-2.0.54-10.1

August 2, 2005
This update security fixes for CVE CAN-2005-2088 and CVE CAN-2005-1268, along with some minor bug fixes.

Summary

The Apache HTTP Server is a powerful, full-featured, efficient, and

freely-available Web server. The Apache HTTP Server is also the

most popular Web server on the Internet.

This update security fixes for CVE CAN-2005-2088 and CVE

CAN-2005-1268, along with some minor bug fixes.

- add security fix for C-L vs T-E handling (#162245, CVE CAN-2005-2088)

- mod_ssl: add security fix for CRL overflow (CVE CAN-2005-1268)

- mod_ssl: fix to enable output buffering (upstream #35279)

- mod_include: fix variable corruption in nested includes (upstream #12655)

- mod_auth_digest: fix hostinfo comparison in CONNECT requests

4fa67f7a6b0bf8fe8e2f97966b9b1dfd SRPMS/httpd-2.0.54-10.1.src.rpm

d7a168567f442382f3cae489de25aa98 ppc/httpd-2.0.54-10.1.ppc.rpm

0b3f4d2e74888b09d3a6ec9e910addde ppc/httpd-devel-2.0.54-10.1.ppc.rpm

e577a7b970af1b4b402e937fd09a0772 ppc/httpd-manual-2.0.54-10.1.ppc.rpm

929f74cef89f5a6e2b576c547d02b0eb ppc/mod_ssl-2.0.54-10.1.ppc.rpm

f3f46a5c94fa4b65098ca7b1d1ac039c ppc/debug/httpd-debuginfo-2.0.54-10.1.ppc.rpm

591f4801f63f1727f7c83c53b7e5c045 x86_64/httpd-2.0.54-10.1.x86_64.rpm

de5248a0690b7e254a7ae50895a5514d x86_64/httpd-devel-2.0.54-10.1.x86_64.rpm

e8bdb8e4da7bcaf05542daee46583f97 x86_64/httpd-manual-2.0.54-10.1.x86_64.rpm

902b4ab1168c79ca1a6f8b285441c8e6 x86_64/mod_ssl-2.0.54-10.1.x86_64.rpm

ce652f5a0f5643e9852621af103e1d59

x86_64/debug/httpd-debuginfo-2.0.54-10.1.x86_64.rpm

1a6a395ea6daf8c289de466c6024847b i386/httpd-2.0.54-10.1.i386.rpm

4d89b220d743076969439276aa336d00 i386/httpd-devel-2.0.54-10.1.i386.rpm

eee01db93e6db9de5feddec6a7b532ca i386/httpd-manual-2.0.54-10.1.i386.rpm

41f2057cd9b3f4db3709db146b43d456 i386/mod_ssl-2.0.54-10.1.i386.rpm

01ec6253ecb0e6c1e7ff990998e0b98a i386/debug/httpd-debuginfo-2.0.54-10.1.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-announce-list

FEDORA-2005-639 2005-08-02 Name : httpd Version : 2.0.54 Release : 10.1 Summary : Apache HTTP Server Description : The Apache HTTP Server is a powerful, full-featured, efficient, and freely-available Web server. The Apache HTTP Server is also the most popular Web server on the Internet. This update security fixes for CVE CAN-2005-2088 and CVE CAN-2005-1268, along with some minor bug fixes. - add security fix for C-L vs T-E handling (#162245, CVE CAN-2005-2088) - mod_ssl: add security fix for CRL overflow (CVE CAN-2005-1268) - mod_ssl: fix to enable output buffering (upstream #35279) - mod_include: fix variable corruption in nested includes (upstream #12655) - mod_auth_digest: fix hostinfo comparison in CONNECT requests 4fa67f7a6b0bf8fe8e2f97966b9b1dfd SRPMS/httpd-2.0.54-10.1.src.rpm d7a168567f442382f3cae489de25aa98 ppc/httpd-2.0.54-10.1.ppc.rpm 0b3f4d2e74888b09d3a6ec9e910addde ppc/httpd-devel-2.0.54-10.1.ppc.rpm e577a7b970af1b4b402e937fd09a0772 ppc/httpd-manual-2.0.54-10.1.ppc.rpm 929f74cef89f5a6e2b576c547d02b0eb ppc/mod_ssl-2.0.54-10.1.ppc.rpm f3f46a5c94fa4b65098ca7b1d1ac039c ppc/debug/httpd-debuginfo-2.0.54-10.1.ppc.rpm 591f4801f63f1727f7c83c53b7e5c045 x86_64/httpd-2.0.54-10.1.x86_64.rpm de5248a0690b7e254a7ae50895a5514d x86_64/httpd-devel-2.0.54-10.1.x86_64.rpm e8bdb8e4da7bcaf05542daee46583f97 x86_64/httpd-manual-2.0.54-10.1.x86_64.rpm 902b4ab1168c79ca1a6f8b285441c8e6 x86_64/mod_ssl-2.0.54-10.1.x86_64.rpm ce652f5a0f5643e9852621af103e1d59 x86_64/debug/httpd-debuginfo-2.0.54-10.1.x86_64.rpm 1a6a395ea6daf8c289de466c6024847b i386/httpd-2.0.54-10.1.i386.rpm 4d89b220d743076969439276aa336d00 i386/httpd-devel-2.0.54-10.1.i386.rpm eee01db93e6db9de5feddec6a7b532ca i386/httpd-manual-2.0.54-10.1.i386.rpm 41f2057cd9b3f4db3709db146b43d456 i386/mod_ssl-2.0.54-10.1.i386.rpm 01ec6253ecb0e6c1e7ff990998e0b98a i386/debug/httpd-debuginfo-2.0.54-10.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. fedora-announce-list@redhat.com http://www.redhat.com/mailman/listinfo/fedora-announce-list

Change Log

References

Update Instructions

Severity
Name : httpd
Version : 2.0.54
Release : 10.1
Summary : Apache HTTP Server

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved