apr / apr-util 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1250684719
업데이트 : 2009.08.19
상세내용
- 보안버그 수정 사항
. CVE-2009-2412
Multiple integer overflow flaws, leading to heap-based buffer overflows,
were found in the way the Apache Portable Runtime (APR) manages memory pool
and relocatable memory allocations. An attacker could use these flaws to
issue a specially-crafted request for memory allocation, which would lead
to a denial of service (application crash) or, potentially, execute
arbitrary code with the privileges of an application using the APR libraries.
Autoupdates 지원 : 지원
pkgsysupdate
update 패키지
RPMS :
. apr-0.9.17-2.el4.i686.rpm
. apr-devel-0.9.17-2.el4.i686.rpm
. apr-0.9.15-3.el4.i686.rpm
. apr-devel-0.9.15-3.el4.i686.rpm
SRPMS :
. apr-0.9.15-3.el4.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2412
|