mod_perl 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1184249886
업데이트 : 2007.07.12
상세내용
1.30 update
- fixed CVE-2007-1349
CVE-2007-1349:
PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x,
does not properly escape PATH_INFO before use in a regular expression, which
allows remote attackers to cause a denial of service (resource consumption) via
a crafted URI.
Autoupdates 지원 : Packages System
pkgadd -F "mod_perl*"
update 패키지
RPMS :
. mod_perl-1.30-1.i686.rpm
SRPMS :
. mod_perl-1.30-1.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1349
|