DEBIAN-CVE-2014-8583

DEBIAN-CVE-2014-8583 PUBLISHED

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors.

Affected Products

Vendor	Product	Versions
Debian:13	mod-wsgi	0, 0, 0
Debian:14	mod-wsgi	0, 0, 0
Debian:12	mod-wsgi	0, 0, 0
Debian:11	mod-wsgi	0, 0, 0

Timeline

Dec 16, 2014 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2014-8583 advisory

Open in Interactive Console →