{"id":2325,"date":"2003-12-23T00:00:00","date_gmt":"2003-12-23T00:00:00","guid":{"rendered":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/2003\/12\/23\/red-hat-releases-linux-patches\/"},"modified":"2021-12-30T11:41:04","modified_gmt":"2021-12-30T11:41:04","slug":"red-hat-releases-linux-patches","status":"publish","type":"post","link":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/2003\/12\/23\/red-hat-releases-linux-patches\/","title":{"rendered":"Red Hat releases Linux patches"},"content":{"rendered":"<p>Red Hat has released a range of patches for its Linux 7.1, 7.2 and 7.3 versions which previously allowed a local user to fire off denial of service attacks.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The real issue comes with the Apache Web server.  It was discovered that if someone gained access to the main configuration and access-restriction files used with Apache, they could execute arbitrary code i.e. set up a denial of service attack.  All users of Apache have been advised to upgrade, at the same time shutting down other holes.  It affects all versions prior to 1.3.29.<\/p>\n<p>Last Thursday, 13 NASA websites were defaced using Apache and Linux exploits.  A Brazilian hacker group apparently used a PHP script to get to the local level of Linux through Apache and then used a known hole in the Linux kernel to get admin rights.  Having got that far they then displayed their knowledge and wisdom of non-IT related matters by incoherently ranting about the Iraq war.<\/p>\n<p>For those wanting to read more, or download the updates, visit: [url=http:\/\/www.linuxsecurity.com\/advisories\/redhat_advisory-3898.html]http:\/\/www.linuxsecurity.com\/advisories\/redhat_advisory-3898.html[\/url]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[],"class_list":["post-2325","post","type-post","status-publish","format-standard","hentry","category-warnings"],"_links":{"self":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2325","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/comments?post=2325"}],"version-history":[{"count":1,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2325\/revisions"}],"predecessor-version":[{"id":4812,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2325\/revisions\/4812"}],"wp:attachment":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/media?parent=2325"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/categories?post=2325"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/tags?post=2325"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}