CVE-2023-41752 Apache Traffic Server: s3_auth plugin problem with hash calculation

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 8.1.8, from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 8.1.9 or 9.2.3, which fixes the issue...

CVE-2023-41752 Apache Traffic Server: s3_auth plugin problem with hash calculation

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 8.1.8, from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 8.1.9 or 9.2.3, which fixes the issue...

Information Disclosure

trafficserver is vulnerable to Information Disclosure. The issue is caused by a 's3auth' plugin allowing a malicious attacker to obtain sensitive information...

[SECURITY] [DLA 3475-1] trafficserver security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3475-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk June 30, 2023 https://wiki.debian.org/LTS -...

Apache Traffic Server 信息泄露漏洞

Apache Traffic Server ATS is a suite of scalable HTTP proxy and caching servers from the Apache Foundation in the United States. An information disclosure vulnerability exists in Apache Traffic Server that stems from a security issue in the s3auth plugin for hash calculation. Affected products an...