Server Software Update Notification: Emergency Update for 05-11-2012

Signature

The following emergency update to the Signature product line was sent out to all datacenters on Friday May 11th, 2012:

Apache Configuration: The Apache configuration file has been updated with a new Rewrite Condition to block access to a PHP vulnerability when PHP is run as a CGI. Apache has been restarted as a part of this update. Further details about this issue can be found in the following security advisory:

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1823

Note: This notification reflects the best knowledge of code and feature updates for this release. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

« Back