SB2019012308 - Slackware Linux update for httpd
Published: January 23, 2019
Security Bulletin ID
SB2019012308
Severity
Medium
Patch available
YES
Number of vulnerabilities
3
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Security restrictions bypass (CVE-ID: CVE-2018-17199)
The vulnerability allows a remote attacker to bypass security restrictions on the target system.The weakness exists due to mod_session checks the session expiry time before decoding the session. A remote attacker сan cause session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded and reuse old session credentials or session IDs, which the attacker could use to access web pages previously accessed by a targeted user.
2) Input validation error (CVE-ID: CVE-2018-17189)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists due to an error when handling malicious input. A remote attacker can send a specially crafted request bodies in a slow loris way to plain resources and cause the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data.
3) Infinite loop (CVE-ID: CVE-2019-0190)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists in the mod_ssl module due to improper handling of renegotiation attempts when OpenSSL 1.1.1 or later is used. A remote attacker can send a specially crafted request that submits malicious input, trigger mod_ssl loop and cause the service to crash.
Remediation
Install update from vendor's website.