Gentoo Security Advisory GLSA 200711-06 (apache) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200711-06.

Solution

All Apache users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-servers/apache-2.0.59-r5' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200711-06 http://bugs.gentoo.org/show_bug.cgi?id=186219

Insight

Multiple vulnerabilities have been discovered in Apache, possibly resulting in a Denial of Service or the disclosure of sensitive information.

Severity

Classification

CVE CVE-2006-5752, CVE-2007-1862, CVE-2007-1863, CVE-2007-3304, CVE-2007-3847, CVE-2007-4465

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Gentoo Security Advisory GLSA 200403-10 (fetchmail)
Gentoo Security Advisory GLSA 200402-01 (PHP)
Gentoo Security Advisory GLSA 200401-02 (honeyd)
Gentoo Security Advisory GLSA 200404-20 (xine)
Gentoo Security Advisory GLSA 200404-14 (cadaver)

Take action and discover your vulnerabilities