Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Medium: httpd24

🗓️ 03 May 2018 00:00:00Reported by AmazonType 
amazon
 amazon🔗 alas.aws.amazon.com👁 65 Views

Use-after-free on HTTP/2 stream shutdown, Bypass with a trailing newline in the file name, Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service, Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications, Out of bound write in mod_authnz_ldap when using too small Accept-Language values, Out of bound access after failure in reading the HTTP request, Weak Digest auth nonce generation in mod_auth_digest. Run _yum update httpd24_ to update your system

Related
Packages
ReporterTitlePublishedViews
Family
ALT Linux		Security fix for the ALT Linux 8 package apache2 version 1:2.4.33-alt1
31 Mar 201800:00
altlinux
ALT Linux		Security fix for the ALT Linux 9 package apache2 version 1:2.4.33-alt1
31 Mar 201800:00
altlinux
ALT Linux		Security fix for the ALT Linux 10 package apache2 version 1:2.4.33-alt1
31 Mar 201800:00
altlinux
IBM Security Bulletins		Security Bulletin: Vulnerability in Apache HTTPD affects IBM Integrated Analytics System
6 May 202013:02
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities have been identified in IBM HTTP Server shipped with IBM Tivoli Security Policy Manager (CVE-2018-1301, CVE-2017-15715, CVE-2017-15710)
16 Jun 201822:06
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in the IBM HTTP Server bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud (CVE-2017-15710, CVE-2017-15715, CVE-2018-1301)
15 Jun 201807:09
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in apache2 affect IBM BladeCenter Advanced Management Module (AMM)
3 Oct 201821:40
ibm
IBM Security Bulletins		Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
27 Jan 202100:05
ibm
IBM Security Bulletins		Security Bulletin: Vulnerability in httpd affects IBM Integrated Analytics System
10 Nov 202011:35
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in the IBM HTTP Server (CVE-2017-15710, CVE-2017-15715, CVE-2018-1301)
19 Feb 201917:50
ibm
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Amazon Linux1i686httpd242.4.33-2.78.amzn1httpd24-2.4.33-2.78.amzn1.i686.rpm
Amazon Linux1x86_64httpd242.4.33-2.78.amzn1httpd24-2.4.33-2.78.amzn1.x86_64.rpm
Amazon Linux1i686httpd24-debuginfo2.4.33-2.78.amzn1httpd24-debuginfo-2.4.33-2.78.amzn1.i686.rpm
Amazon Linux1x86_64httpd24-debuginfo2.4.33-2.78.amzn1httpd24-debuginfo-2.4.33-2.78.amzn1.x86_64.rpm
Amazon Linux1i686httpd24-devel2.4.33-2.78.amzn1httpd24-devel-2.4.33-2.78.amzn1.i686.rpm
Amazon Linux1x86_64httpd24-devel2.4.33-2.78.amzn1httpd24-devel-2.4.33-2.78.amzn1.x86_64.rpm
Amazon Linux1anyhttpd24-manual2.4.33-2.78.amzn1httpd24-manual-2.4.33-2.78.amzn1.noarch.rpm
Amazon Linux1i686httpd24-tools2.4.33-2.78.amzn1httpd24-tools-2.4.33-2.78.amzn1.i686.rpm
Amazon Linux1x86_64httpd24-tools2.4.33-2.78.amzn1httpd24-tools-2.4.33-2.78.amzn1.x86_64.rpm
Amazon Linux1i686mod24_ldap2.4.33-2.78.amzn1mod24_ldap-2.4.33-2.78.amzn1.i686.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
03 May 2018 00:00Current
7.3High risk
Vulners AI Score7.3
CVSS 26.8
CVSS 38.1
CVSS 3.19.8
EPSS0.86006
use-after-freehttp/2 streambypasstrailing newlinefile nameout of bounds readmod_cache_socachedenial of serviceimproper handlingheadersmod_sessionremote usersession datacgi applicationsout of bound writemod_authnz_ldapaccept-languageout of bound accessfailurereadinghttp requestweak digestauth nonce generationmod_auth_digestupdatesystem
65