Wind River Support Network

HomeDefectsLIN7-5347

Fixed

LIN7-5347 : Security Advisory - apache - CVE-2013-5704

Created: Dec 22, 2015 Updated: Sep 8, 2018

Resolved Date: Dec 23, 2015

Found In Version: 7.0.0.11

Fix Version: 7.0.0.12

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass RequestHeader unset directives by placing a header in the trailer portion of data sent with chunked transfer coding.  NOTE: the vendor states this is not a security issue in httpd as such.
LIN8-2221
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-5704

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31