Oval Definition:oval:org.mitre.oval:def:23476
Revision Date:2014-05-26Version:16
Title:ELSA-2011:1245: httpd security update (Important)
Description:The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2011-3192
ELSA-2011:1245-01
Platform(s):Oracle Linux 5
Oracle Linux 6
Product(s):httpd
Definition Synopsis
  • rpm test
  • Oracle Linux 5.x
  • AND rpm test
  • httpd-devel is earlier than 0:2.2.3-53.el5_7.1
  • OR mod_ssl is earlier than 0:2.2.3-53.el5_7.1
  • OR httpd-manual is earlier than 0:2.2.3-53.el5_7.1
  • OR httpd is earlier than 0:2.2.3-53.el5_7.1
  • OR rpm test
  • Oracle Linux 6.x
  • AND rpm test
  • httpd-devel is earlier than 0:2.2.15-9.el6_1.2
  • OR httpd-tools is earlier than 0:2.2.15-9.el6_1.2
  • OR httpd-manual is earlier than 0:2.2.15-9.el6_1.2
  • OR mod_ssl is earlier than 0:2.2.15-9.el6_1.2
  • OR httpd is earlier than 0:2.2.15-9.el6_1.2
    • BACK