CVE-2012-0883

Support for security such as Firewalls and securing linux
Post Reply
weslowsk
Posts: 53
Joined: 2008/04/09 04:45:34
Location: Canada

CVE-2012-0883

Post by weslowsk » 2012/05/19 21:51:54

Hi,

This new CVE just popped up on my PCI compliance radar and Redhat's description of the CVE:

https://access.redhat.com/security/cve/CVE-2012-0883

simply indicates that RHEL 3,4,5,6 aren't vulnerable. Our PCI compliance officer is probably going to expect a little more detail than that. Does anyone have any insight into the CVE and how I can confidently appeal such a perceived vulnerability on CentOS 5?

Thanks in advance...

markkuk
Posts: 739
Joined: 2007/09/07 10:56:28
Location: Finland

CVE-2012-0883

Post by markkuk » 2012/05/20 09:50:09

The Red Hat bugzilla entry [url=https://bugzilla.redhat.com/show_bug.cgi?id=813559]https://bugzilla.redhat.com/show_bug.cgi?id=813559[/url] states that Red Hat/Fedora httpd packages are patched to disable the feature that contains the security flaw.

weslowsk
Posts: 53
Joined: 2008/04/09 04:45:34
Location: Canada

Re: CVE-2012-0883

Post by weslowsk » 2012/05/20 14:06:13

Thanks...when I looked up the bugzilla report yesterday, bugzilla wasn't working...

Post Reply