Fedora 13 : mod_fcgid-2.3.6-1.fc13 (2010-17434)
High Nessus Plugin ID 50615
SynopsisThe remote Fedora host is missing a security update.
DescriptionThis update to the current upstream maintenance release includes a fix for a possible stack buffer overwrite (CVE-2010-3872).
It also changes the default value of FcgidMaxRequestLen from 1GB to 128K; administrators should change this to an appropriate value based on site requirements.
Other changes are described in CHANGES-FCGID document included in the package.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected mod_fcgid package.