- Issued:
- 2005-09-28
- Updated:
- 2005-09-28
RHBA-2005:621 - Bug Fix Advisory
Synopsis
httpd bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated httpd packages that fix various bugs are now available.
Description
The Apache HTTP Server is a popular open source Web server.
Several bugs were discovered in the handling of piped logging processes:
- A file descriptor leak could prevent the httpd parent process from
restarting piped logger processes that exit prematurely.
- An error handling issue could cause the httpd parent process to segfault
when restarting piped logger processes that exit prematurely.
- During a graceful restart, httpd child processes could hang when trying
to write to a piped logger process that has exited.
A bug in the handling of files that were truncated while being sent was
discovered. If a file was served without use of the sendfile() system
call and was truncated while being sent, the child process could go into
an infinite loop.
All users of httpd should upgrade to these updated packages, which resolve
these issues.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 3 x86_64
- Red Hat Enterprise Linux Server 3 ia64
- Red Hat Enterprise Linux Server 3 i386
- Red Hat Enterprise Linux Workstation 3 x86_64
- Red Hat Enterprise Linux Workstation 3 ia64
- Red Hat Enterprise Linux Workstation 3 i386
- Red Hat Enterprise Linux Desktop 3 x86_64
- Red Hat Enterprise Linux Desktop 3 i386
- Red Hat Enterprise Linux for IBM z Systems 3 s390x
- Red Hat Enterprise Linux for IBM z Systems 3 s390
- Red Hat Enterprise Linux for Power, big endian 3 ppc
Fixes
- BZ - 114080 - htdbm man page missing
- BZ - 137306 - Apache child infinite loop
- BZ - 157832 - httpd segfault on logrotate
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.