USN-133-1: Apache utility vulnerability

26 May 2005

apache vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 4.10

Software Description

Details

A buffer overflow was discovered in the “htpasswd” utility. This could be exploited to execute arbitrary code with the privileges of the user invoking htpasswd. This is only a security vulnerability if you have a website that offers a public interface to htpasswd without checking the input beforehand; however, this is very unusual.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 4.10
apache-utils

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

References