Gentoo Security Advisory GLSA 201206-25 (apache) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 201206-25.

Solution

All Apache HTTP Server users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-servers/apache-2.2.22-r1' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201206-25 http://bugs.gentoo.org/show_bug.cgi?id=308049 http://bugs.gentoo.org/show_bug.cgi?id=330195 http://bugs.gentoo.org/show_bug.cgi?id=380475 http://bugs.gentoo.org/show_bug.cgi?id=382971 http://bugs.gentoo.org/show_bug.cgi?id=385859 http://bugs.gentoo.org/show_bug.cgi?id=389353 http://bugs.gentoo.org/show_bug.cgi?id=392189 http://bugs.gentoo.org/show_bug.cgi?id=398761 http://bugs.gentoo.org/show_bug.cgi?id=401081 http://bugs.gentoo.org/show_bug.cgi?id=412481

Insight

Multiple vulnerabilities were found in Apache HTTP Server.

Severity

Classification

CVE	CVE-2010-0408, CVE-2010-0434, CVE-2010-1452, CVE-2010-2791, CVE-2011-3192, CVE-2011-3348, CVE-2011-3368, CVE-2011-3607, CVE-2011-4317, CVE-2012-0021, CVE-2012-0031, CVE-2012-0053, CVE-2012-0883

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Take action and discover your vulnerabilities