Scientific Linux Security Update : apr-util on SL4.x, SL5.x i386/x86_64
Medium Nessus Plugin ID 60915
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was found that certain input could cause the apr-util library to allocate more memory than intended in the apr_brigade_split_line() function. An attacker able to provide input in small chunks to an application using the apr-util library (such as httpd) could possibly use this flaw to trigger high memory consumption. (CVE-2010-1623)
Applications using the apr-util library, such as httpd, must be restarted for this update to take effect.
SolutionUpdate the affected packages.