New Search

RHSA-2009:1148 -- httpd security update (Important)

oval:org.mitre.oval:def:28396

Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. (CVE-2009-1890)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 5
Class:
patch
Reference(s):
  • RHSA-2009:1148
  • CESA-2009:1148-CentOS 5
  • CVE-2009-1890
  • CVE-2009-1891
Product(s):
  • httpd