GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Tue Apr 23, 2019 12:26 am Post subject: [ GLSA 201904-20 ] Apache |
|
|
Gentoo Linux Security Advisory
Title: Apache: Privilege escalation (GLSA 201904-20)
Severity: normal
Exploitable: remote
Date: 2019-04-22
Bug(s): #682306
ID: 201904-20
Synopsis
A vulnerability in Apache might allow an attacker to escalate
privileges.
Background
The Apache HTTP server is one of the most popular web servers on the
Internet.
Affected Packages
Package: www-servers/apache
Vulnerable: < 2.4.39
Unaffected: >= 2.4.39
Architectures: All supported architectures
Description
A vulnerability was discovered in Apache with MPM event, worker, or
prefork.
Impact
An attacker could escalate privileges.
Workaround
There is no known workaround at this time.
Resolution
All Apache users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=www-servers/apache-2.4.39"
|
References
CVE-2019-0211 |
|