Candidate: CVE-2012-1181
PublicDate: 2012-03-19 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1181
Description:
 fcgid_spawn_ctl.c in the mod_fcgid module 2.3.6 for the Apache HTTP Server
 does not recognize the FcgidMaxProcessesPerClass directive for a virtual
 host, which makes it easier for remote attackers to cause a denial of
 service (memory consumption) via a series of HTTP requests that triggers a
 process count higher than the intended limit.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615814
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libapache2-mod-fcgid:
 other: r1037727
upstream_libapache2-mod-fcgid: released (1:2.3.6-1.1)
hardy_libapache2-mod-fcgid: ignored (reached end-of-life)
lucid_libapache2-mod-fcgid: ignored (reached end-of-life)
maverick_libapache2-mod-fcgid: ignored (reached end-of-life)
natty_libapache2-mod-fcgid: released (1:2.3.6-1+squeeze1build0.11.04.1)
oneiric_libapache2-mod-fcgid: released (1:2.3.6-1+squeeze1build0.11.10.1)
precise_libapache2-mod-fcgid: released (1:2.3.6-1.1)
quantal_libapache2-mod-fcgid: released (1:2.3.6-1.1)
raring_libapache2-mod-fcgid: released (1:2.3.6-1.1)
saucy_libapache2-mod-fcgid: released (1:2.3.6-1.1)
devel_libapache2-mod-fcgid: released (1:2.3.6-1.1)