svn commit: r450117 - head/security/vuxml
Brad Davis
brd at FreeBSD.org
Tue Sep 19 12:23:03 UTC 2017
Author: brd
Date: Tue Sep 19 12:23:01 2017
New Revision: 450117
URL: https://svnweb.freebsd.org/changeset/ports/450117
Log:
Add new entry for Apache "OptionsBleed"
Reviewed by: zi
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Tue Sep 19 12:21:17 2017 (r450116)
+++ head/security/vuxml/vuln.xml Tue Sep 19 12:23:01 2017 (r450117)
@@ -58,6 +58,46 @@ Notes:
* Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="76b085e2-9d33-11e7-9260-000c292ee6b8">
+ <topic>Apache -- HTTP OPTIONS method can leak server memory</topic>
+ <affects>
+ <package>
+ <name>apache24</name>
+ <range><lt>2.4.27_1</lt></range>
+ </package>
+ <package>
+ <name>apache22</name>
+ <range><lt>2.2.34_1</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>The Fuzzing Project reports:</p>
+ <blockquote cite="https://blog.fuzzing-project.org/60-Optionsbleed-HTTP-OPTIONS-method-can-leak-Apaches-server-memory.html">
+ <p>Apache httpd allows remote attackers to read secret data from
+ process memory if the Limit directive can be set in a user's
+ .htaccess file, or if httpd.conf has certain misconfigurations,
+ aka Optionsbleed. This affects the Apache HTTP Server through
+ 2.2.34 and 2.4.x through 2.4.27. The attacker sends an
+ unauthenticated OPTIONS HTTP request when attempting to read
+ secret data. This is a use-after-free issue and thus secret data
+ is not always sent, and the specific data depends on many factors
+ including configuration. Exploitation with .htaccess can be
+ blocked with a patch to the ap_limit_section function in
+ server/core.c.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>https://nvd.nist.gov/vuln/detail/CVE-2017-9798</url>
+ <cvename>CVE-2017-9798</cvename>
+ </references>
+ <dates>
+ <discovery>2017-09-18</discovery>
+ <entry>2017-09-19</entry>
+ </dates>
+ </vuln>
+
<vuln vid="6a177c87-9933-11e7-93f7-d43d7e971a1b">
<topic>GitLab -- multiple vulnerabilities</topic>
<affects>
More information about the svn-ports-all
mailing list