Mandrake Linux Security Advisory : apache2 (MDKSA-2005:129)
Medium Nessus Plugin ID 19889
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionMarc Stern reported an off-by-one overflow in the mod_ssl CRL verification callback which can only be exploited if the Apache server is configured to use a malicious certificate revocation list (CVE-2005-1268).
Watchfire reported a flaw that occured when using the Apache server as a HTTP proxy. A remote attacker could send an HTTP request with both a 'Transfer-Encoding: chunked' header and a 'Content-Length' header which would cause Apache to incorrectly handle and forward the body of the request in a way that the receiving server processed it as a separate HTTP request. This could be used to allow the bypass of web application firewall protection or lead to cross-site scripting (XSS) attacks (CVE-2005-2088).
The updated packages have been patched to prevent these issues.
SolutionUpdate the affected packages.