Lucene search

K
osvGoogleOSV:ALSA-2022:1049
HistoryMar 24, 2022 - 10:44 a.m.

Important: httpd:2.4 security update

2022-03-2410:44:04
Google
osv.dev
12
httpd
security update
request body discarding

AI Score

9.6

Confidence

High

EPSS

0.008

Percentile

81.1%

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.

Security Fix(es):

  • httpd: Errors encountered during the discarding of request body lead to HTTP request smuggling (CVE-2022-22720)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.