5747 matches found
[SECURITY] Fedora 22 Update: php-5.6.7-2.fc22
PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
CentOS Errata and Security Advisory CESA-2015:0325 Updated httpd packages that fix two security issues, several bugs, and add various enhancements are for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Low security impact. Common Vulnerability Scoring System...
[SECURITY] Fedora 21 Update: httpd-2.4.10-15.fc21
The Apache HTTP Server is a powerful, efficient, and extensible web server...
ESA-2015-014: RSA® Digital Certificate Solution Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-014: RSA® Digital Certificate Solution Multiple Vulnerabilities EMC Identifier: ESA-2015-014 CVE Identifier: See below for individual CVEs Severity Rating: CVSS v2 Base Score: View details below for individual CVSS Score for each CVE. Affecte...
[USN-2523-1] Apache HTTP Server vulnerabilities
========================================================================== Ubuntu Security Notice USN-2523-1 March 10, 2015 apache2 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Apache HTTP Server Denial of Service Vulnerability (CNVD-2015-01691)
Apache HTTP Server is an open source web server from the Apache Software Foundation that runs on most computer operating systems and is widely used as one of the most popular web server-side software due to its multi-platform and security. A denial-of-service vulnerability exists in Apache HTTP...
Ubuntu 14.04 LTS : Apache HTTP Server vulnerabilities (USN-2523-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2523-1 advisory. Martin Holst Swende discovered that the modheaders module allowed HTTP trailers to replace HTTP headers during request processing. A remote attacker coul...
USN-2523-1: Apache HTTP Server vulnerabilities
Martin Holst Swende discovered that the modheaders module allowed HTTP trailers to replace HTTP headers during request processing. A remote attacker could possibly use this issue to bypass RequestHeaders directives. CVE-2013-5704 Mark Montague discovered that the modcache module incorrectly handl...
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
DEBIAN-CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
RedHat Update for httpd RHSA-2015:0325-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
httpd: NULL pointer dereference in mod_cache if Content-Type has empty value
A NULL pointer dereference flaw was found in the way the modcache httpd module handled Content-Type headers. A malicious HTTP server could cause the httpd child process to crash when the Apache HTTP server was configured to proxy to a server with caching enabled...
httpd: bypass of mod_headers rules via chunked requests
A flaw was found in the way httpd handled HTTP Trailer headers when processing requests using chunked encoding. A malicious client could use Trailer headers to set additional HTTP headers after header processing was performed by other modules. This could, for example, lead to a bypass of header...
[SECURITY] Fedora 20 Update: httpd-2.4.10-2.fc20
The Apache HTTP Server is a powerful, efficient, and extensible web server...
Apache HTTP Server 2.3.x Version Detection
Binary data 8946.prm...
Apache HTTP Server 2.4.x Version Detection
Binary data 8947.prm...
Apache HTTP Server 2.0.x Version Detection
Binary data 8943.prm...
Apache HTTP Server 2.4.10 FastCGI DoS
Binary data 8938.prm...
Apache HTTP Server 1.x Version Detection
Binary data 8942.prm...