LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

apache: man-in-the-middle/SSL injection

Package(s):apache CVE #(s):CVE-2009-3555
Created:November 9, 2009 Updated:March 8, 2013
Description:

From the Mandriva advisory:

Apache is affected by SSL injection or man-in-the-middle attacks due to a design flaw in the SSL and/or TLS protocols. A short term solution was released Sat Nov 07 2009 by the ASF team to mitigate these problems. Apache will now reject in-session renegotiation (CVE-2009-3555).

Alerts:
Gentoo 201110-05 2011-10-10
SUSE SUSE-SU-2011:0847-1 2011-07-27
openSUSE openSUSE-SU-2011:0845-1 2011-07-27
SUSE SUSE-SR:2011:008 2011-05-03
Debian DSA-2161-2 2011-02-14
SUSE SUSE-SR:2011:003 2011-02-08
Debian DSA-2141-3 2011-01-06
Debian DSA-2141-2 2011-01-06
Debian DSA-2141-1 2011-01-06
SUSE SUSE-SA:2011:006 2011-01-25
SUSE SUSE-SR:2010:024 2010-12-23
openSUSE openSUSE-SU-2010:1025-2 2010-12-23
SUSE SUSE-SA:2010:061 2010-12-17
Red Hat RHSA-2010:0987-01 2010-12-15
openSUSE openSUSE-SU-2010:1025-1 2010-12-06
openSUSE openSUSE-SU-2010:0957-1 2010-11-17
Red Hat RHSA-2010:0865-02 2010-11-10
Ubuntu USN-1010-1 2010-10-28
Red Hat RHSA-2010:0807-01 2010-10-27
openSUSE openSUSE-SU-2010:0754-1 2010-10-22
Fedora FEDORA-2010-16240 2010-10-14
Fedora FEDORA-2010-16294 2010-10-14
Ubuntu USN-990-2 2010-09-21
Ubuntu USN-990-1 2010-09-21
Red Hat RHSA-2010:0786-01 2010-10-20
Red Hat RHSA-2010:0768-01 2010-10-13
Debian DSA-2141-4 2011-01-12
Ubuntu USN-927-8 2010-07-23
Ubuntu USN-927-6 2010-07-23
Ubuntu USN-927-7 2010-07-23
SUSE SUSE-SR:2010:019 2010-10-25
CentOS CESA-2010:0768 2010-10-14
Red Hat RHSA-2010:0770-01 2010-10-14
Ubuntu USN-927-5 2010-06-29
Fedora FEDORA-2010-9487 2010-06-04
SuSE SUSE-SR:2010:013 2010-06-14
Fedora FEDORA-2010-6055 2010-04-09
Ubuntu USN-927-4 2010-06-29
Fedora FEDORA-2010-9518 2010-06-04
SuSE SUSE-SR:2010:012 2010-05-25
SuSE SUSE-SR:2010:011 2010-05-10
rPath rPSA-2010-0036-1 2010-05-07
Mandriva MDVSA-2010:089 2010-05-03
Fedora FEDORA-2010-6131 2010-04-09
Mandriva MDVSA-2010:084 2010-04-28
Mandriva MDVSA-2010:070-1 2010-04-20
Mandriva MDVSA-2010:076-1 2010-04-19
Mandriva MDVSA-2010:076 2010-04-15
Fedora FEDORA-2010-5357 2010-03-26
Mandriva MDVSA-2010:070 2010-04-13
SuSE SUSE-SA:2010:021 2010-04-14
Ubuntu USN-927-3 2010-04-11
Ubuntu USN-927-2 2010-04-11
Ubuntu USN-927-1 2010-04-09
Fedora FEDORA-2010-6039 2010-04-09
Fedora FEDORA-2010-6025 2010-04-09
SuSE SUSE-SR:2010:008 2010-04-07
Ubuntu USN-923-1 2010-04-07
Mandriva MDVSA-2010:069 2010-04-06
SuSE SUSE-SA:2010:020 2010-04-06
Red Hat RHSA-2010:0339-01 2010-03-31
Red Hat RHSA-2010:0338-01 2010-03-31
Red Hat RHSA-2010:0337-01 2010-03-31
Gentoo 201006-18 2010-06-04
Red Hat RHSA-2010:0166-01 2010-03-25
Pardus 2010-45 2010-03-29
CentOS CESA-2010:0165 2010-03-28
CentOS CESA-2010:0165 2010-03-28
CentOS CESA-2010:0167 2010-03-28
CentOS CESA-2010:0166 2010-03-26
CentOS CESA-2010:0164 2010-03-27
CentOS CESA-2010:0162 2010-03-27
CentOS CESA-2010:0163 2010-03-25
Red Hat RHSA-2010:0167-01 2010-03-25
Red Hat RHSA-2010:0165-01 2010-03-25
Red Hat RHSA-2010:0164-01 2010-03-25
Red Hat RHSA-2010:0162-01 2010-03-25
Red Hat RHSA-2010:0163-01 2010-03-25
Fedora FEDORA-2010-3905 2010-03-09
Red Hat RHSA-2010:0155-01 2010-03-17
SUSE SUSE-SA:2010:028 2010-07-06
CentOS CESA-2010:0339 2010-06-12
Fedora FEDORA-2010-3956 2010-03-09
Slackware SSA:2010-067-01 2010-03-09
Red Hat RHSA-2010:0130-01 2010-03-03
Fedora FEDORA-2010-1127 2010-01-27
Fedora FEDORA-2009-13250 2009-12-16
Fedora FEDORA-2009-13236 2009-12-16
Mandriva MDVSA-2009:337 2009-12-22
Fedora FEDORA-2009-12305 2009-11-27
Fedora FEDORA-2009-12229 2009-11-27
Fedora FEDORA-2009-12606 2009-12-04
Fedora FEDORA-2009-12968 2009-12-10
Fedora FEDORA-2009-12604 2009-12-04
Mandriva MDVSA-2009:323 2009-12-07
Fedora FEDORA-2009-12750 2009-12-07
Fedora FEDORA-2009-12782 2009-12-07
Fedora FEDORA-2009-12775 2009-12-07
Gentoo 200912-01 2009-12-01
Fedora FEDORA-2009-12747 2009-12-04
SuSE SUSE-SR:2009:019 2009-11-24
Red Hat RHSA-2009:1579-02 2009-11-11
Mandriva MDVSA-2009:295 2009-11-08
rPath rPSA-2009-0155-1 2009-11-24
rPath rPSA-2009-0154-1 2009-11-24
SuSE SUSE-SA:2009:057 2009-11-18
Debian DSA-1934-1 2009-11-16
Red Hat RHSA-2009:1580-02 2009-11-11
Slackware SSA:2009-320-01 2009-11-17
CentOS CESA-2009:1579 2009-11-14
CentOS CESA-2009:1580 2009-11-12
Ubuntu USN-860-1 2009-11-19
CentOS CESA-2009:1579 2009-11-12
Gentoo 201203-22 2012-03-28
Gentoo 201206-18 2012-06-23
Gentoo 201301-01 2013-01-07
Debian DSA-2626-1 2013-02-17
Mandriva MDVSA-2013:019 2013-03-07
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds