Alert GCSA-15028 - Vulnerabilita' in Apache httpd server
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
*****************************************************************
Alert ID: GCSA-15028
Data: 05 agosto 2015
Titolo: Vulnerabilita' in Apache httpd server
*****************************************************************
:: Descrizione del problema
Sono state rilasciate nuove versioni del server http Apache
con le quali vengono risolte alcune vulnerabilita'.
:: Software interessato
Apache httpd server versioni precedenti alla 2.4.16
Apache httpd server versioni precedenti alla 2.2.31
:: Impatto
Denial of service
Not specified
:: Soluzioni
Aggiornare alle ultime versioni
Apache httpd 2.4.16
Apache httpd 2.2.31
http://httpd.apache.org/download.cgi
:: Riferimenti
Apache HTTP Server Released
https://www.apache.org/dist/httpd/Announcement2.4.html
https://www.apache.org/dist/httpd/Announcement2.2.html
Apache httpd vulnerabilities
http://httpd.apache.org/security/vulnerabilities_24.html
http://httpd.apache.org/security/vulnerabilities_22.html
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0228
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2686-1/
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0228.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0253.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3183.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3185.html
Debian Security Advisory
https://www.debian.org/security/2015/dsa-3325
CentOS/Redhat
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-3183
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFVwhqBwZxMk2USYEIRAlN1AJ9vIlkUMIIjlej4YiagEmGGnnn1DQCg0Uo6
w0Ai4iPD/z3wutDMntjHZSo=
=MFFV
-----END PGP SIGNATURE-----
Hash: SHA1
*****************************************************************
Alert ID: GCSA-15028
Data: 05 agosto 2015
Titolo: Vulnerabilita' in Apache httpd server
*****************************************************************
:: Descrizione del problema
Sono state rilasciate nuove versioni del server http Apache
con le quali vengono risolte alcune vulnerabilita'.
:: Software interessato
Apache httpd server versioni precedenti alla 2.4.16
Apache httpd server versioni precedenti alla 2.2.31
:: Impatto
Denial of service
Not specified
:: Soluzioni
Aggiornare alle ultime versioni
Apache httpd 2.4.16
Apache httpd 2.2.31
http://httpd.apache.org/download.cgi
:: Riferimenti
Apache HTTP Server Released
https://www.apache.org/dist/httpd/Announcement2.4.html
https://www.apache.org/dist/httpd/Announcement2.2.html
Apache httpd vulnerabilities
http://httpd.apache.org/security/vulnerabilities_24.html
http://httpd.apache.org/security/vulnerabilities_22.html
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0228
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3183
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3185
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2686-1/
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0228.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0253.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3183.html
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3185.html
Debian Security Advisory
https://www.debian.org/security/2015/dsa-3325
CentOS/Redhat
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-3183
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFVwhqBwZxMk2USYEIRAlN1AJ9vIlkUMIIjlej4YiagEmGGnnn1DQCg0Uo6
w0Ai4iPD/z3wutDMntjHZSo=
=MFFV
-----END PGP SIGNATURE-----