Candidate: CVE-2014-8111
PublicDate: 2015-04-21 17:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8111
 http://rhn.redhat.com/errata/RHSA-2015-0849.html
 http://rhn.redhat.com/errata/RHSA-2015-0848.html
 http://rhn.redhat.com/errata/RHSA-2015-0847.html
 http://rhn.redhat.com/errata/RHSA-2015-0846.html
Description:
 Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for
 subtrees of previous JkMount rules, which allows remote attackers to access
 otherwise restricted artifacts via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libapache-mod-jk:
 upstream: http://svn.apache.org/viewvc?view=revision&revision=1647017
upstream_libapache-mod-jk: released (1.2.41)
lucid_libapache-mod-jk: ignored (reached end-of-life)
precise_libapache-mod-jk: ignored (reached end-of-life)
precise/esm_libapache-mod-jk: DNE (precise was needed)
trusty_libapache-mod-jk: ignored (reached end-of-life)
trusty/esm_libapache-mod-jk: DNE (trusty was needed)
utopic_libapache-mod-jk: ignored (reached end-of-life)
vivid_libapache-mod-jk: released (1:1.2.37-4+deb8u1build0.15.04.1)
vivid/stable-phone-overlay_libapache-mod-jk: DNE
vivid/ubuntu-core_libapache-mod-jk: DNE
wily_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
xenial_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
yakkety_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
zesty_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
artful_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
bionic_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
cosmic_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
disco_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)
devel_libapache-mod-jk: not-affected (1:1.2.40+svn150520-1)