Oval Definition:	oval:com.ubuntu.precise:def:20136438000
Revision Date: 2014-03-18 Version: 1 Title: CVE-2013-6438 on Ubuntu 12.04 LTS (precise) - medium. Description: The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service (daemon crash) via a crafted DAV WRITE request. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-6438 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'apache2' package in precise was vulnerable but has been fixed (note: '2.2.22-1ubuntu1.5').
BACK