USN-813-2 -- apache2 vulnerabilityID: oval:org.secpod.oval:def:700460 | Date: (C)2011-05-13 (M)2024-02-19 |
Class: PATCH | Family: unix |
USN-813-1 fixed vulnerabilities in apr. This update provides the corresponding updates for apr as provided by Apache on Ubuntu 6.06 LTS. Original advisory details: Matt Lewis discovered that apr did not properly sanitize its input when allocating memory. If an application using apr processed crafted input, a remote attacker could cause a denial of service or potentially execute arbitrary code as the user invoking the application.