Your submission was sent successfully! Close

USN-225-1: Apache 2 vulnerability

7 December 2005

Apache 2 vulnerability

Releases

Details

A memory leak was found in the Apache 2 'worker' module in the
handling of aborted TCP connections. By repeatedly triggering this
situation, a remote attacker could drain all available memory, which
eventually led to a Denial of Service.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.10
  • apache2-mpm-worker -
Ubuntu 5.04
  • apache2-mpm-worker -
Ubuntu 4.10
  • apache2-mpm-worker -

In general, a standard system update will make all the necessary changes.

References