---------------------------------------------------------------------- 2003: 2,700 advisories published 2004: 3,100 advisories published 2005: 4,600 advisories published 2006: 5,300 advisories published How do you know which Secunia advisories are important to you? The Secunia Vulnerability Intelligence Solutions allows you to filter and structure all the information you need, so you can address issues effectively. Get a free trial of the Secunia Vulnerability Intelligence Solutions: http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv ---------------------------------------------------------------------- TITLE: SUSE update for apache2 SECUNIA ADVISORY ID: SA27732 VERIFY ADVISORY: http://secunia.com/advisories/27732/ CRITICAL: Less critical IMPACT: Cross Site Scripting, DoS WHERE: >From remote OPERATING SYSTEM: SUSE Linux 10 http://secunia.com/product/6221/ SUSE Linux 10.1 http://secunia.com/product/10796/ openSUSE 10.2 http://secunia.com/product/13375/ openSUSE 10.3 http://secunia.com/product/16124/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ SOFTWARE: Novell Open Enterprise Server http://secunia.com/product/4664/ DESCRIPTION: SUSE has issued an update for apache2. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), and by malicious people to conduct cross-site scripting attacks or to cause a DoS. For more information: SA26273 SA26636 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-2.2.4-70.2.i586.rpm 5c8c9df8021bd8a694aa42797e11276d http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-devel-2.2.4-70.2.i586.rpm f966c45eebc55f68428f01f41145dde5 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-doc-2.2.4-70.2.i586.rpm 674af92d099d49aeb97da101a59b5a54 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-example-pages-2.2.4-70.2.i586.rpm a61818ad152ada1384586c8d6d682435 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-prefork-2.2.4-70.2.i586.rpm 99b3855e656257d508f502791f95b737 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-utils-2.2.4-70.2.i586.rpm 3e0ed251e97f71eb79de2b9f40b5ef6a http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/apache2-worker-2.2.4-70.2.i586.rpm 7fb58d2f212a21ed477e02d88c133c02 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-2.2.3-22.i586.rpm 7235203ca8ac86874993062cb8055cec ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-devel-2.2.3-22.i586.rpm 7027d0c2d50727db5dacd5f7f3bd1b51 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-doc-2.2.3-22.i586.rpm 63e24ca84d66368d07c38512e8d3e689 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-example-pages-2.2.3-22.i586.rpm f68c8e478409a4d3106087261f492c31 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-prefork-2.2.3-22.i586.rpm 60d5cc7dd1b496a37786328c539fbba2 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/apache2-worker-2.2.3-22.i586.rpm 82c77419ee0669618aa74032639787c4 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-2.2.3-16.15.i586.rpm fa372f2030dafbc087f8e6904fc94199 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-devel-2.2.3-16.15.i586.rpm 3953ae7620b440074e3d6bcda8542f9a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-doc-2.2.3-16.15.i586.rpm 5d0943d16c518dbbfb70f7613c0f5285 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-example-pages-2.2.3-16.15.i586.rpm ecc80113c4c6ffbf16a43a544875a52c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-prefork-2.2.3-16.15.i586.rpm d9a13510699569f31aa13837f13c0cce ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/apache2-worker-2.2.3-16.15.i586.rpm 6c4192a439c08b36c5086256e3cea7dc SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-2.0.54-10.11.i586.rpm 091ef2913f972c577ca470804761991d ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-devel-2.0.54-10.11.i586.rpm 4b8b2fdf841dd78afb6ed66df806682f ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-doc-2.0.54-10.11.i586.rpm c4285393bfae18c8a8aa76adc066f7f0 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-example-pages-2.0.54-10.11.i586.rpm 575370d77a6aa474801dfe748be8dcaa ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-prefork-2.0.54-10.11.i586.rpm 2ac341ed0fd1efdeeaf94dbd4b41dcfd ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/apache2-worker-2.0.54-10.11.i586.rpm 721ef7b8c9b2936f0d5755e2ceb12d11 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/libapr0-2.0.54-10.11.i586.rpm f93e09aa56d15844d3e0f3f2fef0b0a1 Power PC Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-2.2.4-70.2.ppc.rpm 5822f3f4b03f3dfed2c47f3b03fb84ef http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-devel-2.2.4-70.2.ppc.rpm c01580c3d3b18ee107f9af256da78168 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-doc-2.2.4-70.2.ppc.rpm d2b986597ca1f729180b144537a8f384 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-example-pages-2.2.4-70.2.ppc.rpm 2b87684a499caf59634a0dd705410240 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-prefork-2.2.4-70.2.ppc.rpm b254b288bcb012569191f83bfbaa3592 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-utils-2.2.4-70.2.ppc.rpm 3edf8b35299e6120393f65db3b944aac http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/apache2-worker-2.2.4-70.2.ppc.rpm 3436cd8e7382d0188c88110efd9e29b8 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-2.2.3-22.ppc.rpm f8cc68762ce82bdcb2c503c4bd44e5b4 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-devel-2.2.3-22.ppc.rpm e77d1a6df4400a83b9d94d3865ec5000 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-doc-2.2.3-22.ppc.rpm c2a037c51ec1a587f8e02060be004270 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-example-pages-2.2.3-22.ppc.rpm 38ef0303016221abc2a6170820092a04 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-prefork-2.2.3-22.ppc.rpm 7437326442ef49366e2011998f4883fb ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/apache2-worker-2.2.3-22.ppc.rpm 67946e186bc9b438a2b99a6600e8249f SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-2.2.3-16.15.ppc.rpm e3203037c0e40c291a976eb2a8c0a005 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-devel-2.2.3-16.15.ppc.rpm c23b86f650def766fc1b5dc88239c6df ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-doc-2.2.3-16.15.ppc.rpm 2bb41c7028ee1add49177cdfbc2598a8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-example-pages-2.2.3-16.15.ppc.rpm 63a215cdafdd04c02bbd6da1785f1c66 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-prefork-2.2.3-16.15.ppc.rpm 0ae7b9db2af93c003da131f1de5f0e3d ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/apache2-worker-2.2.3-16.15.ppc.rpm e73bebd39194db63dc8ef1f3c9692308 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-2.0.54-10.11.ppc.rpm d2f143e0f5f3c6dfd7f556f248d8a161 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-devel-2.0.54-10.11.ppc.rpm e3a558c28149cce559208adc1e711f39 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-doc-2.0.54-10.11.ppc.rpm bae6cc5055e326bc7745dcffb4864fd7 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-example-pages-2.0.54-10.11.ppc.rpm 5da1a633415cf4e6bebf6b1de83f9cec ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-prefork-2.0.54-10.11.ppc.rpm cf8509f873923b790ee563107ab39443 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/apache2-worker-2.0.54-10.11.ppc.rpm 29a9cd7beaacdb62867cf28ecfb51c41 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/libapr0-2.0.54-10.11.ppc.rpm 3b064bf25a2fd96bcbefee39d2051222 x86-64 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-2.2.4-70.2.x86_64.rpm f00fde9a612199222553f75c46b850ae http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-devel-2.2.4-70.2.x86_64.rpm bbdb5ba9b585421086e896c16a1c8663 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-doc-2.2.4-70.2.x86_64.rpm 5aca72f438d6b547a8304a4ae3a2cec4 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-example-pages-2.2.4-70.2.x86_64.rpm 56b34273507c4fa248303800068496c2 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-prefork-2.2.4-70.2.x86_64.rpm 69a44af6621a069c5676936e0e7d1c80 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-utils-2.2.4-70.2.x86_64.rpm d221a9761f20f765a8a881a8722d4f1d http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/apache2-worker-2.2.4-70.2.x86_64.rpm 0bed20cf1ffe0c1610a932e6feea70d5 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-2.2.3-22.x86_64.rpm e20e2592936b656acd9bc4e02285caad ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-devel-2.2.3-22.x86_64.rpm 4c3a9b57c25ba81796e07cea71220f23 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-doc-2.2.3-22.x86_64.rpm 773c46dbf9f15f8a5097bdb082035662 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-example-pages-2.2.3-22.x86_64.rpm 2f90053a8d558a1c75935c0d8f7d971f ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-prefork-2.2.3-22.x86_64.rpm 1c23283c9c58772caabcff9bc9b8f593 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/apache2-worker-2.2.3-22.x86_64.rpm 61fadfbea6df5edfa127926cb4241e34 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-2.2.3-16.15.x86_64.rpm bbafcc8e9b50d4e189ca5ccccb12bc2e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-devel-2.2.3-16.15.x86_64.rpm de73de4831742604320b4e3b408c809c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-doc-2.2.3-16.15.x86_64.rpm 3db00fd2bc76346e2a0f4fdec67f5ff7 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-example-pages-2.2.3-16.15.x86_64.rpm 6a22882d9f7c48ad8b778af742421748 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-prefork-2.2.3-16.15.x86_64.rpm 9e4d9ea5af9d4652efeb9d406a3ea241 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/apache2-worker-2.2.3-16.15.x86_64.rpm b67b1d33e9cf96dee630e56b68119297 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-2.0.54-10.11.x86_64.rpm d054853641a6b9bad1f6e0c80242e3b7 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-devel-2.0.54-10.11.x86_64.rpm c749946f6e2b95774ae8c18196bbaee2 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-doc-2.0.54-10.11.x86_64.rpm f87b2120dee766f8ce4ed1862768bb5f ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-example-pages-2.0.54-10.11.x86_64.rpm c378911bd84c77220584023f7cd51842 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-prefork-2.0.54-10.11.x86_64.rpm 24da3223abd67a891183d76119b88073 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/apache2-worker-2.0.54-10.11.x86_64.rpm dacc28aab90e427a3d9cb76b68d8d85e ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/libapr0-2.0.54-10.11.x86_64.rpm 521736b4330c1af50db74f9d907abc30 Sources: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/apache2-2.2.4-70.2.src.rpm cbb3f1e68039dea2f714c8dbb088baab openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/apache2-2.2.3-22.src.rpm 8f04f16102c1277bce0cf40e74446086 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/apache2-2.2.3-16.15.src.rpm 5feff920ab2101297d651ddf3bd59223 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/apache2-2.0.54-10.11.src.rpm 69d8901debc6e5d2b49e811ef72dad10 SUSE Linux Enterprise Server 10 SP1 http://support.novell.com/techcenter/psdb/37e6149ffa4539f63a70576decf83a8b.html SLE SDK 10 SP1 http://support.novell.com/techcenter/psdb/37e6149ffa4539f63a70576decf83a8b.html Open Enterprise Server http://support.novell.com/techcenter/psdb/a5b67777faf570a7e001c677784ac7c7.html Novell Linux POS 9 http://support.novell.com/techcenter/psdb/a5b67777faf570a7e001c677784ac7c7.html Novell Linux Desktop 9 http://support.novell.com/techcenter/psdb/a5b67777faf570a7e001c677784ac7c7.html Novell Linux Desktop 9 SDK http://support.novell.com/techcenter/psdb/a5b67777faf570a7e001c677784ac7c7.html SUSE SLES 9 http://support.novell.com/techcenter/psdb/a5b67777faf570a7e001c677784ac7c7.html ORIGINAL ADVISORY: http://lists.opensuse.org/opensuse-security-announce/2007-11/msg00002.html OTHER REFERENCES: SA26273: http://secunia.com/advisories/26273/ SA26636: http://secunia.com/advisories/26636/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------