MGASA-2014-0135

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2013-6438 CVE-2014-0098

Published: 19 Mar 2014, 17:40

Last modified:16 Apr 2026, 06:23

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

19 Mar 2014, 17:40

Published

Vulnerability first disclosed

16 Apr 2026, 06:23

Last Modified

Vulnerability information updated

Description

Updated apache packages fix security vulnerabilities Apache HTTPD before 2.4.9 was vulnerable to a denial of service in mod_dav when handling DAV_WRITE requests (CVE-2013-6438). Apache HTTPD before 2.4.9 was vulnerable to a denial of service when logging cookies (CVE-2014-0098).

Affected Systems

mageia•apache
< 2.4.4-7.6.mga3
mageia•apache
< 2.4.7-5.1.mga4

References (3)

https://advisories.mageia.org/MGASA-2014-0135.html
https://bugs.mageia.org/show_bug.cgi?id=13040
http://www.apache.org/dist/httpd/Announcement2.4.html