Debian Bug report logs -
#1032476
apache2: CVE-2023-25690 CVE-2023-27522
Package:
src:apache2;
Maintainer for src:apache2 is Debian Apache Maintainers <debian-apache@listsdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 7 Mar 2023 19:51:02 UTC
Severity: grave
Tags: security, upstream
F ...
Multiple vulnerabilities have been discovered in the Apache HTTP server,
which may result in HTTP response splitting or denial of service
For the stable distribution (bullseye), these problems have been fixed in
version 2456-1~deb11u1
We recommend that you upgrade your apache2 packages
For the detailed security status of apache2 please refer t ...
Some mod_proxy configurations on Apache HTTP Server versions 240 through 2455 allow a HTTP Request Smuggling attack Configurations are affected when mod_proxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-insert ...
A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent This could cause the process to crash This issue affects Apache HTTP Server 2454 and earlier (CVE-2006-20001)
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulne ...
概述
Important: httpd:24 security update
类型/严重性
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
标题
An update for the httpd:24 module is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Ha ...
Synopsis
Important: Red Hat JBoss Core Services Apache HTTP Server 2451 SP2 security update
Type/Severity
Security Advisory: Important
Topic
Red Hat JBoss Core Services Apache HTTP Server 2451 Service Pack 2 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Sco ...
Synopsis
Important: Red Hat JBoss Core Services Apache HTTP Server 2451 SP2 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2 ...
Synopsis
Important: httpd:24 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the httpd:24 module is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat Product Se ...
Synopsis
Important: httpd security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for httpd is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a secu ...
Synopsis
Important: httpd:24 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the httpd:24 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this upda ...
Synopsis
Important: httpd:24 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the httpd:24 module is now available for Red Hat Enterprise Linux 82 Advanced Update Support, Red Hat Enterpris ...
Synopsis
Important: httpd24-httpd security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for httpd24-httpd is now available for Red Hat Software CollectionsRed Hat Product Security has rated this updat ...
Synopsis
Important: httpd:24 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the httpd:24 module is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Se ...
Synopsis
Important: httpd and mod_http2 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for httpd and mod_http2 is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat P ...
Synopsis
Important: httpd and mod_http2 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for httpd and mod_http2 is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated ...
Description<!----> This CVE is under investigation by Red Hat Product Security ...
PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS ...