Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2020/11/04 1:44 a.m.3 views

httpd: mod_http2: DoS via slow, unneeded request bodies

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.1AI score0.19404EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/12/10 7:59 a.m.3 views

httpd: mod_http2: DoS via slow, unneeded request bodies

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.1AI score0.19404EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/20 4:22 p.m.10 views

httpd: mod_http2: DoS via slow, unneeded request bodies

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.1AI score0.19404EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/20 4:14 p.m.1 views

httpd: mod_http2: DoS via slow, unneeded request bodies

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.1AI score0.19404EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/20 4:8 p.m.2 views

httpd: mod_http2: DoS via slow, unneeded request bodies

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.1AI score0.19404EPSS
Exploits0References4
OSV
OSV
added 2019/01/30 10:29 p.m.3 views

DEBIAN-CVE-2018-17189

In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 modhttp2 connections...

5.3CVSS7.8AI score0.19404EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2019/01/25 12:0 a.m.48 views

Security fix for the ALT Linux 10 package apache2 version 1:2.4.38-alt1

Jan. 25, 2019 Anton Farygin 1:2.4.38-alt1 - 2.4.38 - fixes: important: modssl 2.4.37 remote DoS when used with OpenSSL 1.1.1. CVE-2019-0190 low: modsessioncookie does not respect expiry time. CVE-2018-17199 low: DoS for HTTP/2 connections via slow request bodies. CVE-2018-17189...

5CVSS7.1AI score0.59942EPSS
Exploits0
Rows per page
Query Builder