USN-2299-1

Advisory lineage Upstream: 8 Downstream: 0

Upstream

CVE-2014-0117 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 UBUNTU-CVE-2014-0117 UBUNTU-CVE-2014-0118

Published: 23 Jul 2014, 20:04

Last modified:22 Apr 2026, 08:58

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

23 Jul 2014, 20:04

Published

Vulnerability first disclosed

22 Apr 2026, 08:58

Last Modified

Vulnerability information updated

Description

apache2 vulnerabilities Marek Kroemeke discovered that the mod_proxy module incorrectly handled certain requests. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-0117) Giancarlo Pellegrino and Davide Balzarotti discovered that the mod_deflate module incorrectly handled body decompression. A remote attacker could use this issue to cause resource consumption, leading to a denial of service. (CVE-2014-0118) Marek Kroemeke and others discovered that the mod_status module incorrectly handled certain requests. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service, or possibly execute arbitrary code. (CVE-2014-0226) Rainer Jung discovered that the mod_cgid module incorrectly handled certain scripts. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service. (CVE-2014-0231)

Affected Systems

ubuntu•apache2
< 2.4.7-1ubuntu4.1

USN-2299-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)