CVE-2014-8111

EPSS 3.7%

libapache-mod-jk - security update

發布日:2015/4/21修改日:2026/4/28

也稱為:DEBIAN-CVE-2014-8111

描述

Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.

受影響套件(3)

Debian/libapache-mod-jkfrom 0, < 1:1.2.40+svn150520-1
Debian/libapache-mod-jkfrom 0, < 1:1.2.30-1squeeze2
Debian/libapache-mod-jkfrom 0, < 1:1.2.37-1+deb7u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8111