SUSE-SU-2022:0929-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2022-23943: heap out-of-bounds write in modsed bsc1197098. - CVE-2022-22720: HTTP request smuggling due to incorrect error handling bsc1197095. - CVE-2022-22719: use of uninitialized value of in r:parsebody in modlua bsc1197091. -...

[SECURITY] [DLA 2960-1] apache2 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2960-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 22, 2022 https://wiki.debian.org/LTS -...

SUSE SLES11 Security Update : apache2 (SUSE-SU-2022:14924-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:14924-1 advisory. - Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing th...

SUSE: Security Advisory (SUSE-SU-2022:14924-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : apache2 (SUSE-SU-2022:0928-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0928-1 advisory. - A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue...

SUSE SLES12 Security Update : apache2 (SUSE-SU-2022:0918-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0918-1 advisory. - A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue...

SUSE: Security Advisory (SUSE-SU-2022:0918-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-2960-1 apache2 - security update

Bulletin has no description...

SUSE: Security Advisory (SUSE-SU-2022:0928-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:0928-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2022-23943: heap out-of-bounds write in modsed bsc1197098. - CVE-2022-22720: HTTP request smuggling due to incorrect error handling bsc1197095. - CVE-2022-22719: use of uninitialized value of in r:parsebody in modlua bsc1197091. -...

SUSE-SU-2022:0918-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2022-23943: heap out-of-bounds write in modsed bsc1197098. - CVE-2022-22720: HTTP request smuggling due to incorrect error handling bsc1197095. - CVE-2022-22719: use of uninitialized value of in r:parsebody in modlua bsc1197091. -...

SUSE-SU-2022:14924-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2022-22720: HTTP request smuggling due to incorrect error handling bsc1197095. - CVE-2022-22721: possible buffer overflow with very large or unlimited LimitXMLRequestBody bsc1197096...

Ubuntu: Security Advisory (USN-5333-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Out-of-bounds Write

apache2 is vulnerable to out-of-bounds write. The vulnerability exists due to the heap memory corruption, which allows an attacker to overwrite heap memory via malicious input...

Integer Overflow

apache2 is vulnerable to Integer Overflow. The vulnerability exists in httpd where it incorrectly limits the value of LimitXMLRequestBody option which can lead to an integer overflow and later causes an out-of-bounds write...

SUSE SLES12 Security Update : apache2 (SUSE-SU-2022:0440-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0440-1 advisory. - A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for...

SUSE: Security Advisory (SUSE-SU-2022:0440-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:0440-1 Security update for apache2

This update for apache2 fixes the following issues: - CVE-2021-44224: Fixed NULL dereference or SSRF in forward proxy configurations bsc1193943 - CVE-2021-44790: Fixed a buffer overflow when parsing multipart content in modlua bsc1193942 This update also enables TLS 1.3 support, by building again...

openSUSE: Security Advisory for apache2 (openSUSE-SU-2022:0091-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.52-alt1

1:2.4.52-alt1 built Feb. 4, 2022 Anton Farygin in task 294407 Dec. 21, 2021 Anton Farygin - 2.4.52 Fixes: CVE-2021-44790, CVE-2021-44224...