[SECURITY] Fedora Core 2 Test Update: httpd-2.0.51-2.5

Joe Orton jorton at redhat.com
Fri Sep 17 16:31:20 UTC 2004 

Please add any feedback from testing these packages to:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=130750

---------------------------------------------------------------------
Fedora Test Update Notification
FEDORA-2004-313
2004-09-17
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : httpd
Version     : 2.0.51                      
Release     : 2.5                  
Summary     : Apache HTTP Server
Description :
Apache is a powerful, full-featured, efficient, and freely-available
Web server. Apache is also the most popular Web server on the
Internet.

---------------------------------------------------------------------

This update includes the latest stable release of Apache httpd 2.0,
including fixes for possible denial of service issues in mod_ssl and
mod_dav_fs, and an privilege elevation attack for local users.

---------------------------------------------------------------------

* Thu Sep 16 2004 Joe Orton <jorton at redhat.com> 2.0.51-2.5

- mod_ssl: prevent SIGHUP-triggers-SIGSEGV after upgrade from 2.0.50
- revert mod_ldap/mod_auth_ldap changes likewise

* Wed Sep 15 2004 Joe Orton <jorton at redhat.com> 2.0.51-2.1

- update to 2.0.51, including security fixes for:
 * core: CAN-2004-0747
 * mod_dav_fs: CAN-2004-0809
 * mod_ssl: CAN-2004-0751, CAN-2004-0748

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/2/

c8170ec9004c74d4fd7dce411389a506  SRPMS/httpd-2.0.51-2.5.src.rpm
8a270fd28bd5852ba4a3f5db9cc4585c  x86_64/httpd-2.0.51-2.5.x86_64.rpm
f8e47590495389d6d3294a449505817c  x86_64/httpd-devel-2.0.51-2.5.x86_64.rpm
1d179652cd1f07a8ed71e244dce6b476  x86_64/httpd-manual-2.0.51-2.5.x86_64.rpm
e3f09fe6cd1380f10200a12b1cdc95ab  x86_64/mod_ssl-2.0.51-2.5.x86_64.rpm
18f8fa53d136cd1d1c0f01dba5679ed2  x86_64/debug/httpd-debuginfo-2.0.51-2.5.x86_64.rpm
fbe31f69f31c7bceacf5dbbdc7ebe385  i386/httpd-2.0.51-2.5.i386.rpm
07cf4c9ac471f15dc79dbf4827924f7d  i386/httpd-devel-2.0.51-2.5.i386.rpm
41264556066c57e9ddde1d0cde506515  i386/httpd-manual-2.0.51-2.5.i386.rpm
f444845baf097f6daf36d97bf79cfc50  i386/mod_ssl-2.0.51-2.5.i386.rpm
f9c05dfc22a660c09181ecb3ed78fbfe  i386/debug/httpd-debuginfo-2.0.51-2.5.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  You may 
need to edit your up2date channels configuration.  Within 
/etc/sysconfig/rhn/sources enable the following line: 
yum updates-testing http://fedora.redhat.com/updates/testing/fedora-core-2
---------------------------------------------------------------------

More information about the test mailing list