Lucene search
+L

10 matches found

Oracle linux
Oracle linux
added 2 days ago4 views

httpd security, bug fix, and enhancement update

2.4.63-13.0.1.el102.4 - Replace index.html with Oracle's index page oracleindex.html. 2.4.63-13.4 - Resolves: RHEL-186221 - httpd: Apache HTTP Server: Heap-based Buffer Overflow via malicious backend servers CVE-2026-34356 - Resolves: RHEL-186195 - httpd: Apache HTTP Server: Heap-based Buffer...

9.8CVSS6.3AI score0.00937EPSS
Exploits0
Rockylinux
Rockylinux
added 2026/07/07 12:5 p.m.6 views

httpd security, bug fix, and enhancement update

An update is available for httpd. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The httpd packages provide the Apache HTTP Server, a powerful, efficient, and...

9.8CVSS6.9AI score0.00937EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.7 views

SUSE SLED15: apache2 / apache2-devel / apache2-event / apache2-manual / etc (SUSE-SU-2026:2759-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2759-1 advisory. This update for apache2 fixes the following issues - CVE-2026-29167: modldap per-dir use-after-free bsc1267976...

9.8CVSS7.3AI score0.11471EPSS
Exploits8References40
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.12 views

RockyLinux 10 : httpd (RLSA-2026:34109)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:34109 advisory. httpd: incomplete fix for CVE-2023-38709 CVE-2024-42516 httpd: NULL pointer dereference via specially crafted request CVE-2026-29169 httpd: Apache HTTP...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References27
RedHat Linux
RedHat Linux
added 2026/07/01 9:31 a.m.8 views

Important: Red Hat Security Advisory: httpd security, bug fix, and enhancement update

An update for httpd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.03914EPSS
Exploits2References8
OSV
OSV
added 2026/07/01 8:5 a.m.6 views

SUSE-SU-2026:2717-1 Security update for apache2

This update for apache2 fixes the following issues - CVE-2026-29167: modldap per-dir use-after-free bsc1267976. - CVE-2026-29170: modproxyftp XSS bsc1267977. - CVE-2026-34355: modproxyhtml buffer overflow bsc1267978. - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer...

9.8CVSS7.3AI score0.11471EPSS
Exploits8References27
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.6 views

RHEL 10 : httpd (RHSA-2026:34109)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34109 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: incomplete fix...

9.8CVSS6.9AI score0.03914EPSS
Exploits2References22
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/16 2:0 p.m.9 views

Security Bulletin: IBM HTTP Server is affected by multiple vulnerabilities due to the included Apache HTTP Server

Summary There are multiple vulnerabilities in the IBM HTTP Server used by IBM WebSphere Application Server CVE-2026-29167, CVE-2026-29170, CVE-2026-44186, CVE-2026-34356, CVE-2026-42535, CVE-2026-43951, CVE-2026-44119, CVE-2026-44631. Vulnerability Details CVEID:CVE-2026-29167 DESCRIPTION: Use...

9.8CVSS5AI score0.00682EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/08 4:16 p.m.18 views

CVE-2026-34356

Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

7.5CVSS0.00682EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/08 3:12 p.m.10 views

CVE-2026-34356

Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

7.5CVSS5.4AI score0.00682EPSS
Exploits0
Rows per page
Query Builder