WBSA-2004:084-01: Updated httpd packages
Posted on: 03/24/2004 07:26 AM

Updated httpd packages are not available for White Box Enterprise Linux 3.0

Security Advisory

Synopsis: Updated httpd packages fix mod_ssl security issue
Advisory ID: WBSA-2004:084-01
Issue date: 2004-03-23
Updated on: 2004-03-23
Product: White Box Enterprise Linux 3.0 (i386)
Keywords: Apache httpd DoS SSL
Cross references:
CVE Names: CAN-2004-0113

Updated httpd packages are now available that fix a denial of service vulnerability in mod_ssl and include various other bug fixes.

More information is available in Red Hat, Inc's original advisory available on their site at:


To install this new package on your White Box Enterprise Linux system use the Up2Date Network or Yum.

Note: Be sure to change the default Up2Date or Yum server from the initial location to prevent undue load to the whiteboxlinux.org server, which doesn't have a lot of outbound bandwidth. The config files already have entries for mirror sites commented out.

Up2Date's configuration file is at /etc/sysconfig/rhn/sources

Yum's configuration is in /etc/yum.conf

Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/wbsa_2004084_01_updated_httpd_packages.html)