rPSA-2007-0051-2 mod_python
rPath Update Announcements
announce-noreply at rpath.com
Thu Mar 8 03:11:14 EST 2007
rPath Security Advisory: 2007-0051-2
Published: 2007-03-07
Updated:
2007-03-08 Removed :config components
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect Deterministic Information Exposure
Updated Versions:
mod_python=/conary.rpath.com at rpl:devel//1/3.1.4-8.4-2
References:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2680
https://issues.rpath.com/browse/RPL-1105
Description:
Previous versions of the mod_python package have a weakness that can
expose the contents of previously-freed memory, leading to potential
information exposure.
8 March 2007 Update: rebuilt packages not to include :config
components.
More information about the security-announce
mailing list