User: Password:
Subscribe / Log in / New account

httpd: disrepects dirty flag

Package(s):httpd apache CVE #(s):CVE-2013-2249
Created:August 6, 2013 Updated:August 12, 2013
Description: From the CVE entry:

mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors.

Fedora FEDORA-2013-13922 httpd 2013-08-16
Fedora FEDORA-2013-13994 httpd 2013-08-09
Slackware SSA:2013-218-02 httpd 2013-08-06

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds