Release date:
Updated on:
Affected Systems:
RedHat Fedora 15
RedHat Fedora 14
Cherokee 1.2.99
Description:
--------------------------------------------------------------------------------
Bugtraq id: 49772
Cve id: CVE-2011-2190, CVE-2011-2191
Cherokee is a Web server software that supports FastCGI, SCGI, PHP, CGI, TLS and SSL encrypted connections, virtual hosts, authorization authentication, real-time encoding, load balancing, log Files compatible with Apache.
There are multiple Implementation Vulnerabilities in Cherokee, and the technical details are unknown.
<* Source: Vincent Danen
Link: https://bugzilla.redhat.com/show_bug.cgi? Id = 713306
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cherokee
--------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.alobbs.com/modules.php? Op = modload & name = cherokee & file = index