CVE-2011-1176

NameCVE-2011-1176
DescriptionThe configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.
SourceCVE (at NVD; oss-sec, fulldisc, OSVDB, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, more)
ReferencesDSA-2202-1
NVD severitymedium (attack range: remote)
Debian Bugs618857
Debian/oldstablenot vulnerable.
Debian/stablenot vulnerable.
Debian/testingnot vulnerable.
Debian/unstablenot vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
apache2 (PTS)squeeze2.2.16-6+squeeze12fixed
squeeze (security)2.2.16-6+squeeze11fixed
squeeze (lts)2.2.16-6+squeeze14fixed
wheezy2.2.22-13+deb7u4fixed
wheezy (security)2.2.22-13+deb7u3fixed
jessie, sid2.4.10-10fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
apache2source(unstable)2.2.17-2medium618857
apache2sourcelenny(not affected)
apache2sourcesqueeze2.2.16-6+squeeze1mediumDSA-2202-1
apache2-mpm-itksource(unstable)(unfixed)medium
apache2-mpm-itksourcelenny(not affected)

Notes

[lenny] - apache2 <not-affected> (different source package in lenny: apache2-mpm-itk)
[lenny] - apache2-mpm-itk <not-affected> (bug was introduced later, in 2.2.11-01)

Search for package or bug name: Reporting problems