Back to bug 1326320
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Timothy Walsh | 2016-04-12 12:11:43 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-04-12 12:11:43 UTC | Doc Type | --- | Bug Fix |
| Timothy Walsh | 2016-04-12 12:11:59 UTC | Blocks | 1326299 | |
| Timothy Walsh | 2016-04-12 12:21:57 UTC | Whiteboard | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected |
| Timothy Walsh | 2016-04-12 12:22:06 UTC | CC | bbaranow, bmaxwell, cdewolf, dandread, darran.lofthouse, jawilson, pgier, psakar, rnetuka, vtunka | |
| Timothy Walsh | 2016-04-12 12:26:44 UTC | Depends On | 1326325 | |
| Timothy Walsh | 2016-04-12 12:27:00 UTC | Depends On | 1326327 | |
| Timothy Walsh | 2016-04-12 12:27:18 UTC | Depends On | 1326328 | |
| Tomas Hoger | 2016-04-12 12:39:13 UTC | Summary | EMBARGOED remotely Segfault Apache http server | EMBARGOED mod_cluster: remotely Segfault Apache http server |
| Brandon Perkins | 2016-04-12 13:03:44 UTC | CC | bperkins | |
| Adam Mariš | 2016-04-12 13:24:07 UTC | Whiteboard | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new |
| Adam Mariš | 2016-04-12 13:24:16 UTC | CC | briang, jorton, kanderso, mmaslano | |
| Adam Mariš | 2016-04-12 13:31:28 UTC | Whiteboard | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected |
| Adam Mariš | 2016-04-12 13:37:12 UTC | CC | amaris | |
| Summary | EMBARGOED mod_cluster: remotely Segfault Apache http server | EMBARGOED CVE-2016-3110 mod_cluster: remotely Segfault Apache http server | ||
| Alias | CVE-2016-3110 | |||
| Michal Karm Babacek | 2016-05-23 08:06:25 UTC | Depends On | 1338646 | |
| Timothy Walsh | 2016-07-22 04:07:23 UTC | Whiteboard | impact=moderate,public=20160630,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected | impact=moderate,public=20160801,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected |
| Timothy Walsh | 2016-08-08 11:45:51 UTC | Doc Text | It was discovered that it is possible to remotely Segfault Apache http server with a specially crafted string sent to the mod_cluster via service messages (MCMP). |
|
| Timothy Walsh | 2016-08-22 13:29:34 UTC | Whiteboard | impact=moderate,public=20160801,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected | impact=moderate,public=20160822,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected |
| Timothy Walsh | 2016-08-22 13:38:48 UTC | Summary | EMBARGOED CVE-2016-3110 mod_cluster: remotely Segfault Apache http server | CVE-2016-3110 mod_cluster: remotely Segfault Apache http server |
| Timothy Walsh | 2016-08-22 13:38:55 UTC | Group | security, qe_staff | |
| Chess Hazlett | 2016-08-22 14:04:26 UTC | Whiteboard | impact=moderate,public=20160822,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected | impact=moderate,public=20160822,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,cvss3=5.1/CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected |
| Chess Hazlett | 2016-08-22 18:32:34 UTC | CC | chazlett | |
| Timothy Walsh | 2016-09-08 09:07:08 UTC | Depends On | 1374210 | |
| Timothy Walsh | 2016-09-08 09:07:17 UTC | Depends On | 1374211 | |
| Timothy Walsh | 2016-09-30 03:57:16 UTC | Doc Text | It was discovered that it is possible to remotely Segfault Apache http server with a specially crafted string sent to the mod_cluster via service messages (MCMP). | It was discovered that it is possible to remotely Segfault Apache http server with a specially crafted string sent to the mod_cluster via service messages (MCMP). |
| Adam Mariš | 2016-11-08 16:22:16 UTC | CC | amaris | |
| Product Security DevOps Team | 2019-06-08 02:50:37 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:50:37 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:46:44 UTC | Whiteboard | impact=moderate,public=20160822,reported=20160407,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,cvss3=5.1/CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H,jbews-3/mod_cluster=affected,jbews-2/mod_cluster=wontfix,eap-6/mod_cluster=affected,rhscl-2/httpd24-mod_cluster-native=new,fedora-all/mod_cluster=affected,epel-6/mod_cluster=affected | |
| Tomas Hoger | 2020-02-28 11:57:35 UTC | CC | jorton | |
| Stanislav Ochotnicky | 2020-12-15 08:51:23 UTC | See Also | https://issues.redhat.com/browse/JWS-363, https://issues.redhat.com/browse/JBCS-35 |
Back to bug 1326320