SUSE-SU-2026:20081-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2025-55753: Fixed modmd ACME, unintended retry intervals bsc1254511 - CVE-2025-58098: Fixed Server Side Includes adds query string to exec cmd bsc1254512 - CVE-2025-65082: Fixed CGI environment variable override bsc1254514 - CVE-2025-66200...

Important: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

DSA-5940-1 modsecurity-apache - security update

Bulletin has no description...

Photon OS 5.0: Apache PHSA-2025-5.0-0519

An update of the apache package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0519. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

OPENSUSE-SU-2021:0908-1 Security update for apache2

This update for apache2 fixes the following issues: - fixed CVE-2021-30641 bsc1187174: MergeSlashes regression - fixed CVE-2021-31618 bsc1186924: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 bsc1187040: modproxy NULL pointer dereference - fixed CVE-2020-3545...

SUSE-SU-2019:0888-2 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2018-17199: A bug in Apache's 'modsessioncookie' lead to an issue where the module did not respect a cookie's expiry time. bsc1122839 CVE-2019-0220: The Apache HTTP server did not use a consistent strategy for URL normalization throughout...

SUSE-SU-2019:0889-1 Security update for apache2

This update for apache2 fixes the following issues: Security issues fixed: - CVE-2018-17199: A bug in Apache's 'modsessioncookie' lead to an issue where the module did not respect a cookie's expiry time. bsc1122839 CVE-2019-0220: The Apache HTTP server did not use a consistent strategy for URL...

SUSE-SU-2015:0974-1 Security update for apache2

Apache2 updated to fix four security issues and one non-security bug. The following vulnerabilities have been fixed: - modheaders rules could be bypassed via chunked requests. Adds 'MergeTrailers' directive to restore legacy behavior. bsc871310, CVE-2013-5704 - An empty value in Content-Type coul...

Mandrake Linux Security Advisory : apache2 (MDKSA-2004:055)

A stack-based buffer overflow exists in the sslutiluuencodebinary function in sslutil.c in Apache. When modssl is configured to trust the issuing CA, a remote attacker may be able to execute arbitrary code via a client certificate with a long subject DN. The provided packages are patched to preve...

apache security update

Apache httpd is a hypertext transfer protocol server, and is used by over two thirds of the Internet's web sites. Upgraded Apache packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix local vulnerabilities that could allow users who can create or edit Apache config files to...

Low: Red Hat Security Advisory: apache security update for Stronghold

Updated Apache packages are available which fix a security issue by preventing control characters from being written to the error log. The updated packages also include a minor bug fix for modproxy. The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. T...

Moderate: Red Hat Security Advisory: apache security update for Stronghold

The Apache Web server contains a security vulnerability which can be used to launch a denial of service attack, or in some cases, allow remote code execution. Versions of the Apache Web server up to and including 1.3.24 contain a bug in the routines which deal with "chunked" encoded requests. A...

Important: Red Hat Security Advisory: : Updated apache packages available

Updated Apache packages are now available for Red Hat Linux 6.2, 7, 7.1, and 7.2. These packages upgrade the Apache Web server to version 1.3.22, which closes a potential security bug which would present clients with a listing of the contents of a directory instead of the contents of an index fil...

[SECURITY] [DSA 021-1] New version of Apache released

---------------------------------------------------------------------------- Debian Security Advisory DSA-021-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26, 2001 - ---------------------------------------------------------------------------- Package : apache...