Mandriva Linux Security Advisory : apache-mod_wsgi (MDVSA-2014:253)
Medium Nessus Plugin ID 80042
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionUpdated apache-mod_wsgi package fixes security vulnerability :
It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode (CVE-2014-8583).
SolutionUpdate the affected apache-mod_wsgi package.