Ubuntu Update For Apr USN-1134-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1134-1

Solution

Please Install the Updated Packages.

Insight

Maksymilian Arciemowicz reported that a flaw in the fnmatch() implementation in the Apache Portable Runtime (APR) library could allow an attacker to cause a denial of service. This can be demonstrated in a remote denial of service attack against mod_autoindex in the Apache web server. (CVE-2011-0419) Is was discovered that the fix for CVE-2011-0419 introduced a different flaw in the fnmatch() implementation that could also result in a denial of service. (CVE-2011-1928)

Affected

apr on Ubuntu 11.04 , Ubuntu 10.10 , Ubuntu 10.04 LTS , Ubuntu 8.04 LTS , Ubuntu 6.06 LTS

Severity

Classification

CVE CVE-2011-0419, CVE-2011-1928

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Ubuntu Update for bind9 vulnerabilities USN-1025-1
Ubuntu Update for bind9 USN-1139-1
Ubuntu Update for acpi-support USN-2297-1
Ubuntu Update for dovecot USN-1295-1
Ubuntu Update for apparmor USN-1676-1

Ubuntu Update for apr USN-1134-1

Take action and discover your vulnerabilities