20674 2009-07-03 15:33:03 +0400 Apache mod_proxy Reverse Proxy Denial of Service Vulnerability 2009-07-31 10:57:49 +0400 1 1 4 Development Sisyphus apache2 unstable all Linux CLOSED FIXED http://secunia.com/advisories/35691/ security P3 major --- 20916 1 crux rider ldv rider qa-sisyphus oldest_to_newest 94164 0 crux 2009-07-03 15:33:03 +0400 A vulnerability has been reported in the Apache mod_proxy module, which can be exploited by malicious people to potentially cause a DoS (Denial of Service). An error exists in the mod_proxy module when functioning in reverse proxy mode. This can be exploited to consume large amounts of CPU in an affected proxy process via specially crafted proxy requests. Fixed in svn: http://svn.apache.org/viewvc?view=rev&revision=790587 95169 1 ldv 2009-07-24 02:32:26 +0400 *ping* 95185 2 solo 2009-07-24 12:04:14 +0400 В работе. 95229 3 solo 2009-07-24 22:14:14 +0400 Правильно понимаю, что это CVE-2009-1890 (см. http://secunia.com/advisories/cve_reference/CVE-2009-1890/)? 95498 4 solo 2009-07-31 10:57:49 +0400 Закрыта апстримом в apache 2.2.12