paul Posted December 28, 2009 Report Share Posted December 28, 2009 A vulnerability has been found and corrected in mod_auth_mysql: SQL injection vulnerability in mod_auth_mysql.c in the mod-auth-mysql (aka libapache2-mod-auth-mysql) module for the Apache HTTP Server 2.x allows remote attackers to execute arbitrary SQL commands via multibyte character encodings for unspecified input (CVE-2008-2384). This update provides fixes for this vulnerability. Update: Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. Link to comment Share on other sites More sharing options...
Recommended Posts