Name | CVE-2013-4365 |
Description | Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
References | DSA-2778-1 |
Debian Bugs | 725942 |
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|---|---|---|
libapache2-mod-fcgid (PTS) | sid, trixie, bookworm, bullseye | 1:2.3.9-4 | fixed |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
libapache2-mod-fcgid | source | squeeze | 1:2.3.6-1+squeeze2 | DSA-2778-1 | ||
libapache2-mod-fcgid | source | wheezy | 1:2.3.6-1.2+deb7u1 | DSA-2778-1 | ||
libapache2-mod-fcgid | source | (unstable) | 1:2.3.9-1 | 725942 |