CVE-2009-0023

CVE-2009-0023 affects Apache APR-util prior to 1.3.5. The vulnerability in apr_strmatch_precompile (strmatch/apr_strmatch.c) can be exploited by crafted input via that library’s usage contexts (e.g., .htaccess with Apache HTTP Server, SVNMasterURI in mod_dav_svn, mod_apreq2, or applications using...

Gentoo Security Advisory GLSA 200604-08 (libapreq2)

The remote host is missing updates announced in advisory GLSA 200604-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200604-08 (libapreq2)

The remote host is missing updates announced in advisory GLSA 200604-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1000-1 (libapreq2-perl)

The remote host is missing an update to libapreq2-perl announced via advisory DSA 1000-1. An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU consumption. The old stable...

Debian Security Advisory DSA 1000-2 (libapreq2-perl)

The remote host is missing an update to libapreq2-perl announced via advisory DSA 1000-2. Gunnar Wolf noticed that the correction for the following problem was not complete and requires an update. For completeness we're providing the original problem description: An algorithm weakness has been...

Debian: Security Advisory (DSA-1000-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1000-1 (libapreq2-perl)

The remote host is missing an update to libapreq2-perl announced via advisory DSA 1000-1. An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU consumption. The old stable...

Debian DSA-1000-2 : libapreq2-perl - design error

Gunnar Wolf noticed that the correction for the following problem was not complete and requires an update. For completeness we're providing the original problem description : An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be...

GLSA-200604-08 : libapreq2: Denial of Service vulnerability

The remote host is affected by the vulnerability described in GLSA-200604-08 libapreq2: Denial of Service vulnerability A vulnerability has been reported in the apreqparseheaders and apreqparseurlencoded functions of Apache2::Request. Impact : A remote attacker could possibly exploit the...

libapreq2: Denial of Service vulnerability

Background libapreq is a shared library with associated modules for manipulating client request data via the Apache API. Description A vulnerability has been reported in the apreqparseheaders and apreqparseurlencoded functions of Apache2::Request. Impact A remote attacker could possibly exploit t...

[SECURITY] [DSA 1000-2] New Apache2::Request packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1000-2 [email protected] http://www.debian.org/security/ Martin Schulze April 3rd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1000-1] New Apache2::Request packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1000-1 [email protected] http://www.debian.org/security/ Martin Schulze March 14th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1000-1] New Apache2::Request packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1000-1 [email protected] http://www.debian.org/security/ Martin Schulze March 14th, 2006 http://www.debian.org/security/faq -...

DSA-1000-2 libapreq2-perl - design error

Bulletin has no description...

[SECURITY] [DSA 1000-1] New Apache2::Request packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1000-1 [email protected] http://www.debian.org/security/ Martin Schulze March 14th, 2006 http://www.debian.org/security/faq -...

CVE-2006-0042

Unspecified vulnerability in 1 apreqparseheaders and 2 apreqparseurlencoded functions in Apache2::Request Libapreq2 before 2.07 allows remote attackers to cause a denial of service CPU consumption via unknown attack vectors that result in quadratic computational complexity...

CVE-2006-0042

Summary: CVE-2006-0042 corresponds to a vulnerability in Apache2::Request (Libapreq2) up through versions before 2.07. The issue stems from an algorithm weakness in the apreq_parse_headers() and apreq_parse_urlencoded() functions that can be exploited remotely to cause a Denial of Service via CPU...

[SA18846] Libapreq2 Unspecified Vulnerability

TITLE: Libapreq2 Unspecified Vulnerability SECUNIA ADVISORY ID: SA18846 VERIFY ADVISORY: http://secunia.com/advisories/18846/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: Libapreq2 2.x http://secunia.com/product/8138/ DESCRIPTION: A vulnerability has been reported in Libapreq2...