vulnerability

CentOS Linux: CVE-2017-7679: Important: httpd security update (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	2017-06-20	2017-08-16	2023-05-25

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

2017-06-20

Added

2017-08-16

Modified

2023-05-25

Description

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header.

Solution(s)

centos-upgrade-httpdcentos-upgrade-httpd-debuginfocentos-upgrade-httpd-develcentos-upgrade-httpd-manualcentos-upgrade-httpd-toolscentos-upgrade-mod_ldapcentos-upgrade-mod_proxy_htmlcentos-upgrade-mod_sessioncentos-upgrade-mod_ssl

References

BID-99170
DEBIAN-DSA-3896
NVD-CVE-2017-7679
REDHAT-RHSA-2017:2478
REDHAT-RHSA-2017:2479
REDHAT-RHSA-2017:2483
REDHAT-RHSA-2017:3193
REDHAT-RHSA-2017:3194
REDHAT-RHSA-2017:3195
REDHAT-RHSA-2017:3475
REDHAT-RHSA-2017:3476
REDHAT-RHSA-2017:3477
UBUNTU-USN-3340-1
UBUNTU-USN-3373-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today