CVE-2014-8583

描述

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.

受影響套件(1)

• Debian/mod-wsgifrom 0, < 4.2.7-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8583