Repository 32bit  Forum
Repository 64bit  Wiki

Menu

Home
Associazione Slacky
Info Repository
Repository 13.1 - 32
Repository 13.1 - 64
Repository 13.0 - 32
Other Repository
Gnome Slacky
Mirror
Slapt-Get Slackyd Swaret
Forum
Canale IRC
Security Advisories
Documentazione
Repository amici
Contact me
GPG key
Cerca
Collabora
Info RSS
Il nostro mondo
Le spese di Slacky.eu
Download Slackware

Security Advisories

(SSA) httpd Print E-mail
Monday, 25 January 2010 
[slackware-security]  httpd (SSA:2010-024-01)

New httpd packages are available for Slackware 12.0, 12.1, 12.2, 13.0,
and -current to fix security issues.

More details about the issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095


Here are the details from the Slackware 13.0 ChangeLog:
+--------------------------+
patches/packages/httpd-2.2.14-i486-1_slack13.0.txz:  Upgraded.
  This fixes a couple of security bugs when using mod_proxy_ftp.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3094
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3095
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

HINT:  Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try.  This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project!   :-) 

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.0:
httpd-2.2.14-i486-1_slack12.0.tgz

Updated package for Slackware 12.1:
httpd-2.2.14-i486-1_slack12.1.tgz

Updated package for Slackware 12.2:
httpd-2.2.14-i486-1_slack12.2.tgz

Updated package for Slackware 13.0:
httpd-2.2.14-i486-1_slack13.0.txz

Updated package for Slackware x86_64 13.0:
httpd-2.2.14-x86_64-1_slack13.0.txz

Updated package for Slackware -current:
httpd-2.2.14-i486-1.txz

Updated package for Slackware x86_64 -current:
httpd-2.2.14-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 12.0 package:
d98d0776aca79606bf2a192d26ad186e  httpd-2.2.14-i486-1_slack12.0.tgz

Slackware 12.1 package:
e9548e750fd504edb7cef3c794fda093  httpd-2.2.14-i486-1_slack12.1.tgz

Slackware 12.2 package:
bf8d9f7284cfc1e2e00a90fd3c7f79ca  httpd-2.2.14-i486-1_slack12.2.tgz

Slackware 13.0 package:
a5e68df7ac3b4d5c065791e52eb08c2b  httpd-2.2.14-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
489576badad7f3749f99783b8f034c7d  httpd-2.2.14-x86_64-1_slack13.0.txz

Slackware -current package:
c2c52ef56eea0d9ad7a14801e11ab9e7  httpd-2.2.14-i486-1.txz

Slackware x86_64 -current package:
6bffc232ff17989a5c092dbd70b9229b  httpd-2.2.14-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg httpd-2.2.14-i486-1_slack13.0.txz

Then, restart httpd:
# sh /etc/rc.d/rc.httpd restart


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key

 This e-mail address is being protected from spam bots, you need JavaScript enabled to view it
 
< Prev   Next >
[ Back ]

Repository 32 - 13.1

Repository 64 - 13.1

We have 26 guests online

Latest Topics

Official Mirror

Darkstar (193.136.198.175), the portuguese open source software mirror, an Intel Core 2 Duo E6700 @ 2.66GHz with 4GiB RAM and 1.5TiB HDD (5x320GB RAID-5), powered by Slackware Linux and running vsftpd, Apache and rsync. This server is maintained by Secção DigitalAEIST in IST, Lisbon, Portugal, and is publicly available through FTP, HTTP and RSYNC protocols at 1Gbit/s.