SUSE Package Hub - openSUSE-2019-2558

Update Info

openSUSE-2019-2558

Security update for apache2-mod_perl

Type: security

Severity: moderate

Issued: 2019-11-24

Description:

This update for apache2-mod_perl to version 2.0.11 fixes the following issues:

Security issue fixed: 

- CVE-2011-2767: Fixed a vulnerability which could have allowed 
  perl code execution in the context of user account (bsc#1156944).

Other issue addressed:

- Restore process name after sv_setpv_mg() call. (bsc#1091625)	  

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

CVE: CVE-2011-2767
Bugzilla: 1156944 VUL-0: CVE-2011-2767: apache2-mod_perl: arbitrary Perl code execution in the context of the user account via a user-owned .htaccess
Bugzilla: 1091625 apache2-mod_perl changes apache process display name

Packages

apache2-mod_perl-2.0.11-bp151.4.3.1