Family: Debian Local Security Checks --> Category: infos
[DSA1000] DSA-1000-2 libapreq2-perl Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Gunnar Wolf noticed that the correction for the following problem was
not complete and requires an update. For completeness we're
providing the original problem description:
An algorithm weakness has been discovered in Apache2::Request, the
generic request library for Apache2 which can be exploited remotely
and cause a denial of service via CPU consumption.
The old stable distribution (woody) does not contain this package.
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your libapreq2, libapache2-mod-apreq2
and libapache2-request-perl packages.
Solution : http://www.debian.org/security/2006/dsa-1000
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.