{"id":"MGASA-2013-0313","summary":"Updated apache-mod_fcgid packages fix CVE-2013-4365","details":"Updated apache-mod_fcgid package fixes security vulnerability:\n\nApache mod_fcgid before version 2.3.9 fails to perform adequate boundary\nchecks on user-supplied input. This may allow a remote attacker to cause\na heap-based buffer overflow, resulting in a denial of service or potentially\nallowing the execution of arbitrary code (CVE-2013-4365).\n","modified":"2026-04-16T06:25:39.599293323Z","published":"2013-10-17T20:01:29Z","upstream":["CVE-2013-4365"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2013-0313.html"},{"type":"WEB","url":"http://www.mail-archive.com/dev%40httpd.apache.org/msg58077.html"},{"type":"WEB","url":"http://www.debian.org/security/2013/dsa-2778"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=11449"}],"affected":[{"package":{"name":"apache-mod_fcgid","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/apache-mod_fcgid?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.3.6-2.2.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0313.json"}},{"package":{"name":"apache-mod_fcgid","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/apache-mod_fcgid?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.3.9-1.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0313.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}