Marek Kroemeke discovered that the mod_proxy module incorrectly handled certain requests. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-0117)
Giancarlo Pellegrino and Davide Balzarotti discovered that the mod_deflate module incorrectly handled body decompression. A remote attacker could use this issue to cause resource consumption, leading to a denial of service. (CVE-2014-0118)
Marek Kroemeke and others discovered that the mod_status module incorrectly handled certain requests. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service, or possibly execute arbitrary code. (CVE-2014-0226)
Rainer Jung discovered that the mod_cgid module incorrectly handled certain scripts. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service. (CVE-2014-0231)
{ "availability": "No subscription required", "binaries": [ { "apache2-suexec": "2.4.7-1ubuntu4.1", "apache2-suexec-custom": "2.4.7-1ubuntu4.1", "libapache2-mod-proxy-html": "1:2.4.7-1ubuntu4.1", "apache2-dev": "2.4.7-1ubuntu4.1", "apache2-bin": "2.4.7-1ubuntu4.1", "apache2-suexec-pristine": "2.4.7-1ubuntu4.1", "apache2-doc": "2.4.7-1ubuntu4.1", "apache2-mpm-event": "2.4.7-1ubuntu4.1", "apache2": "2.4.7-1ubuntu4.1", "apache2-dbg": "2.4.7-1ubuntu4.1", "apache2-data": "2.4.7-1ubuntu4.1", "apache2-mpm-prefork": "2.4.7-1ubuntu4.1", "apache2-mpm-itk": "2.4.7-1ubuntu4.1", "libapache2-mod-macro": "1:2.4.7-1ubuntu4.1", "apache2.2-bin": "2.4.7-1ubuntu4.1", "apache2-utils": "2.4.7-1ubuntu4.1", "apache2-mpm-worker": "2.4.7-1ubuntu4.1" } ] }