Oval Definition:	oval:org.mitre.oval:def:12951
Revision Date: 2014-06-23 Version: 19 Title: DSA-2237-1 apr -- denial of service Description: A flaw was found in the APR library, which could be exploited through Apache HTTPD's mod_autoindex. If a directory indexed by mod_autoindex contained files with sufficiently long names, a remote attacker could send a carefully crafted request which would cause excessive CPU usage. This could be used in a denial of service attack. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-0419 DSA-2237-1 Platform(s): Debian GNU/kFreeBSD 6.0 Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Product(s): apr Definition Synopsis Release section Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND apr DPKG is earlier than 1.2.12-5+lenny3 OR Release section Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND Installed architecture is all AND apr DPKG is earlier than 1.4.2-6+squeeze1
BACK