FreeBSD : Apache APR -- DoS vulnerabilities (38560d79-0e42-11e1-902b-20cf30e32f6d)

Medium Nessus Plugin ID 56805

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The Apache Portable Runtime Project reports :

Reimplement apr_fnmatch() from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch() spec.

Solution

Update the affected package.

See Also

http://www.apache.org/dist/apr/Announcement0.9.html

http://www.nessus.org/u?1f4c6c3b

Plugin Details

Severity: Medium

ID: 56805

File Name: freebsd_pkg_38560d790e4211e1902b20cf30e32f6d.nasl

Version: 1.9

Type: local

Published: 2011/11/14

Updated: 2019/08/02

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:apr0, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2011/11/13

Vulnerability Publication Date: 2011/05/19

Reference Information

CVE: CVE-2011-0419