Bug 1086814 - (CVE-2018-1283) VUL-0: CVE-2018-1283 apache2: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications
(CVE-2018-1283)
VUL-0: CVE-2018-1283 apache2: Improper handling of headers in mod_session can...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Major
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/202611/
CVSSv3:RedHat:CVE-2018-1283:7.5:(AV:N...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-03-26 09:21 UTC by Karol Babioch
Modified: 2018-10-18 16:42 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Karol Babioch 2018-03-26 09:21:26 UTC
rh#1560395

Apache HTTP Server (httpd) through version 2.4.29 has a vulnerability in the handling of HTTP session headers in mod_session. When mod_session is configured to forward its session data to CGI applications (SessionEnv on, not the default), a remote user may influence their content by using a "Session" header.

A remote attacker could potentially exploit this to execute arbitrary code.


Upstream Advisory:

https://httpd.apache.org/security/vulnerabilities_24.html


Upstream Patch:

https://svn.apache.org/viewvc?view=revision&sortby=log&revision=1824477

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1560395
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-1283
http://seclists.org/oss-sec/2018/q1/267
Comment 4 Petr Gajdos 2018-04-04 10:41:33 UTC
Submitted for: 12, 12sp1, 12sp2
I believe all fixed.
Comment 6 Swamp Workflow Management 2018-04-05 19:10:28 UTC
SUSE-SU-2018:0879-1: An update that solves 6 vulnerabilities and has one errata is now available.

Category: security (important)
Bug References: 1057406,1086774,1086775,1086813,1086814,1086817,1086820
CVE References: CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1303,CVE-2018-1312
Sources used:
SUSE OpenStack Cloud 6 (src):    apache2-2.4.16-20.16.1
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    apache2-2.4.16-20.16.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    apache2-2.4.16-20.16.1
Comment 7 Swamp Workflow Management 2018-04-09 01:08:11 UTC
SUSE-SU-2018:0901-1: An update that solves 6 vulnerabilities and has one errata is now available.

Category: security (important)
Bug References: 1057406,1086774,1086775,1086813,1086814,1086817,1086820
CVE References: CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1303,CVE-2018-1312
Sources used:
SUSE Linux Enterprise Server 12-LTSS (src):    apache2-2.4.10-14.31.1
Comment 8 Swamp Workflow Management 2018-05-07 16:10:42 UTC
SUSE-SU-2018:1161-1: An update that fixes 7 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1086774,1086775,1086813,1086814,1086817,1086820
CVE References: CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1302,CVE-2018-1303,CVE-2018-1312
Sources used:
SUSE OpenStack Cloud 7 (src):    apache2-2.4.23-29.18.2
SUSE Linux Enterprise Software Development Kit 12-SP3 (src):    apache2-2.4.23-29.18.2
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    apache2-2.4.23-29.18.2
SUSE Linux Enterprise Server 12-SP3 (src):    apache2-2.4.23-29.18.2
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    apache2-2.4.23-29.18.2
Comment 9 Swamp Workflow Management 2018-05-09 22:09:53 UTC
openSUSE-SU-2018:1198-1: An update that fixes 7 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1086774,1086775,1086813,1086814,1086817,1086820
CVE References: CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1302,CVE-2018-1303,CVE-2018-1312
Sources used:
openSUSE Leap 42.3 (src):    apache2-2.4.23-22.1
Comment 10 Marcus Meissner 2018-05-11 07:53:48 UTC
released
Comment 11 Swamp Workflow Management 2018-10-18 16:42:51 UTC
SUSE-SU-2018:1161-2: An update that fixes 7 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1086774,1086775,1086813,1086814,1086817,1086820
CVE References: CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1302,CVE-2018-1303,CVE-2018-1312
Sources used:
SUSE Linux Enterprise Server 12-SP2-BCL (src):    apache2-2.4.23-29.18.2