Launchpad CVE tracker

CVE 2014-8583

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.

Related bugs and status

CVE-2014-8583 (Candidate) is related to these bugs:

Bug #1399016: MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty

		In	Importance	Status
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	MAAS	Undecided	Fix Released
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	maas (Ubuntu)	Critical	Fix Released
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	maas (Ubuntu Vivid)	Critical	Fix Released
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	maas (Ubuntu Precise)	Critical	Fix Released
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	maas (Ubuntu Utopic)	Critical	Fix Released
1399016	MAAS failed to respond once libapache2-mod-wsgi upgrade on trusty	maas (Ubuntu Trusty)	Critical	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-8583

References