[v2.6] apache2: remote DoS (CVE-2013-6438, CVE-2014-0098)
CVE-2013-6438:
The dav_xml_get_cdata function in main/util.c in the mod_dav module
in the Apache HTTP Server before 2.4.8 does not properly remove
whitespace
characters from CDATA sections, which allows remote attackers to cause a
denial of service (daemon crash) via a crafted DAV WRITE request.
•CONFIRM:
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/dav/main/util.c
•CONFIRM:
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/dav/main/util.c?r1=1528718&r2=1556428&diff\_format=h
•CONFIRM: http://www.apache.org/dist/httpd/CHANGES\_2.4.9
CVE-2014-0098:
The log_cookie function in mod_log_config.c in the mod_log_config
module in the Apache HTTP Server before 2.4.8 allows remote attackers to
cause a denial of service (segmentation fault and daemon crash) via a
crafted cookie that is not properly handled during truncation.
•CONFIRM:
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/loggers/mod\_log\_config.c
•CONFIRM:
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/loggers/mod\_log\_config.c?r1=1575394&r2=1575400&diff\_format=h
•CONFIRM: http://www.apache.org/dist/httpd/CHANGES\_2.4.9
(from redmine: issue id 2794, created on 2014-03-27, closed on 2014-04-18)
- Relations:
- parent #2791 (closed)
- Changesets:
- Revision 6499c73a by Natanael Copa on 2014-04-17T10:00:51Z:
main/apache2: security upgrade to 2.4.9 (CVE-2013-6438,CVE-2014-0098)
fixes #2794