- Vulnerability/
- RHSA-2011:1392
RHSA-2011:1392: Moderate: httpd security and bug fix update
First published: Thu Oct 20 2011(Updated: )
The Apache HTTP Server is a popular web server.<br>It was discovered that the Apache HTTP Server did not properly validate the<br>request URI for proxied requests. In certain configurations, if a reverse<br>proxy used the ProxyPassMatch directive, or if it used the RewriteRule<br>directive with the proxy flag, a remote attacker could make the proxy<br>connect to an arbitrary server, possibly disclosing sensitive information<br>from internal web servers not directly accessible to the attacker.<br>(CVE-2011-3368)<br>Red Hat would like to thank Context Information Security for reporting this<br>issue.<br>This update also fixes the following bug:<br><li> The fix for CVE-2011-3192 provided by the RHSA-2011:1245 update</li> introduced regressions in the way httpd handled certain Range HTTP header<br>values. This update corrects those regressions. (BZ#736593, BZ#736594)<br>All httpd users should upgrade to these updated packages, which contain<br>backported patches to correct these issues. After installing the updated<br>packages, the httpd daemon must be restarted for the update to take effect.<br>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/httpd | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
| redhat/httpd | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
| redhat/httpd-devel | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
| redhat/httpd-devel | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
| redhat/httpd-manual | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
| redhat/httpd-manual | <2.2.3-53.el5_7.3 | 2.2.3-53.el5_7.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=736593
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=736594
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=740045
- https://access.redhat.com/security/updates/classification/#moderate
- https://rhn.redhat.com/errata/RHSA-2011-1245.html
- https://access.redhat.com/errata/RHSA-2011:1392 (Advisory)
Frequently Asked Questions
What is the severity of RHSA-2011:1392?
The severity of RHSA-2011:1392 is considered important due to the potential for unauthorized access through improper request URI validation.
How do I fix RHSA-2011:1392?
To fix RHSA-2011:1392, you need to update the Apache HTTP Server to version 2.2.3-53.el5_7.3 or later.
What versions of Apache HTTP Server are affected by RHSA-2011:1392?
RHSA-2011:1392 affects Apache HTTP Server versions prior to 2.2.3-53.el5_7.3.
What is the nature of the vulnerability in RHSA-2011:1392?
The vulnerability in RHSA-2011:1392 arises from the Apache HTTP Server's failure to properly validate the request URI for proxied requests.
Which packages are impacted by the RHSA-2011:1392 vulnerability?
The impacted packages for RHSA-2011:1392 include httpd, httpd-devel, and httpd-manual on Red Hat Enterprise Linux.
- collector/redhat-errata
- anchor-id/RHSA-2011:1392
- agent/title
- agent/type
- agent/event
- agent/severity
- agent/references
- agent/description
- agent/tags
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/remedy
- package-manager/redhat