Debian LTS Advisory ([SECURITY] [DLA 1028-1] apache2 security update)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Robert Swiecki discovered that the value placeholder in [Proxy-]Authorization Digest headers were not initialized or reset before or between successive key=value assignments in Apache 2 mod_auth_digest module.
Affected Software
Affected Software
apache2 on Debian Linux
Detection Method
Detection Method
This check tests the installed software version using the apt package manager.
Solution
Solution
For Debian 7 'Wheezy', this issue has been fixed in apache2 version 2.2.22-13+deb7u10. We recommend that you upgrade your apache2 packages.
Scan for free your assets for this vulnerability + 99,568 other vulnerabilities
It is easy and free to get started with Mageni and it can be installed in Windows, macOS and Linux.
Processing. Please wait...
Free for 7-days then $4 USD monthly regardless of how many IPs, scans, users, or deployments you have. No Contracts, Cancel at Anytime and 7-days Money-Back Guarantee.