mod_jk: information disclosure
| Package(s): | mod_jk |
CVE #(s): | CVE-2008-5519
|
| Created: | April 24, 2009 |
Updated: | January 12, 2010 |
| Description: |
From the Red Hat advisory: An information disclosure flaw was found in mod_jk. In certain situations, if a faulty client set the "Content-Length" header without providing data, or if a user sent repeated requests very quickly, one user may view a response intended for another user. |
| Alerts: |
| SuSE |
SUSE-SR:2009:020 |
apache2-mod_jk, cacti, cups, expat, finch/pidgin, htmldoc, kdelibs3/kdelibs4, libpoppler/poppler, lighttpd, opera, perl-HTML-Parser, pyxml, seamonkey, wireshark/ethereal, xntp, zope/zope3 |
2010-01-12 |
| SuSE |
SUSE-SR:2009:018 |
cyrus-imapd, neon/libneon, freeradius, strongswan, openldap2, apache2-mod_jk, expat, xpdf, mozilla-nspr |
2009-11-10 |
| Gentoo |
200906-04 |
mod_jk |
2009-06-29 |
| Red Hat |
RHSA-2009:1087-01 |
mod_jk |
2009-06-09 |
| Debian |
DSA-1810-1 |
libapache-mod-jk |
2009-06-02 |
| Red Hat |
RHSA-2009:0446-01 |
mod_jk |
2009-04-23 |
|
