USN-3825-2: mod_perl vulnerability
USN-3825-2: mod_perl vulnerability libapache2-mod-perl2 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 ESM Summary mod_perl could be made to run programs contrary to expectations. Software Description libapache2-mod-perl2 – Integration of perl with the Apache2 web server Details USN-3825-1 fixed a vulnerability in mod_perl. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Jan Ingvoldstad discovered that mod_perl incorrectly handled configuration options to disable being used by unprivileged users, contrary to the documentation. A local attacker could possibly use this issue to execute arbitrary Perl code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 ESM libapache2-mod-perl2 – 2.0.5-5ubuntu1.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References USN-3825-1 [ more… ]