Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1022-1
HistoryNov 25, 2010 - 12:00 a.m.

APR-util vulnerability

2010-11-2500:00:00
ubuntu.com
39

6.2 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.425 Medium

EPSS

Percentile

97.3%

JSON

Releases

  • Ubuntu 10.10
  • Ubuntu 10.04
  • Ubuntu 9.10
  • Ubuntu 8.04

Packages

  • apr-util -

Details

It was discovered that APR-util did not properly handle memory when
destroying APR buckets. An attacker could exploit this and cause a denial
of service via memory exhaustion.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchlibaprutil1< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbd-freetds< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbd-mysql< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbd-odbc< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbd-pgsql< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbd-sqlite3< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dbg< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-dev< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibaprutil1-ldap< 1.3.9+dfsg-1ubuntu1.1UNKNOWN
Ubuntu8.04noarchlibaprutil1< 1.2.12+dfsg-3ubuntu0.3UNKNOWN
Rows per page:
1-10 of 301

Related

openvas 32
nessus 26
debian 2
slackware 2
centos 1
prion 1
cve 1
oraclelinux 1
httpd 2
ubuntucve 2
fedora 3
redhat 2
veracode 1
f5 2
debiancve 1
ubuntu 1
freebsd 1
gentoo 1
suse 1
kaspersky 1
hackerone 1
openvas
openvas
Fedora Update for apr-util FEDORA-2010-15953
2010-11-04 00:00:00
Debian: Security Advisory (DSA-2117-1)
2023-03-08 00:00:00
RedHat Update for apr-util RHSA-2010:0950-01
2010-12-23 00:00:00
nessus
nessus
Scientific Linux Security Update : apr-util on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
Debian DSA-2117-1 : apr-util - denial of service
2010-10-06 00:00:00
CentOS 4 : apr-util (CESA-2010:0950)
2011-01-28 00:00:00
debian
debian
[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service
2010-10-04 21:35:18
[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service
2010-10-04 21:35:18
slackware
slackware
[slackware-security] apr-util
2011-02-11 01:16:50
[slackware-security] httpd
2011-02-11 01:17:26
centos
centos
apr security update
2011-01-27 08:46:39
prion
prion
Design/Logic Flaw
2010-10-04 21:00:00
cve
cve
CVE-2010-1623
2010-10-04 21:00:00
oraclelinux
oraclelinux
apr-util security update
2010-12-07 00:00:00
httpd
httpd
Apache Httpd < 2.0.64 : apr_bridage_split_line DoS
2010-03-03 00:00:00
Apache Httpd < 2.2.17 : apr_bridage_split_line DoS
2010-03-03 00:00:00
ubuntucve
ubuntucve
CVE-2010-1623
2010-10-04 00:00:00
CVE-2007-6750
2011-12-27 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: apr-util-1.3.10-1.fc13
2010-10-28 05:47:25
[SECURITY] Fedora 12 Update: apr-util-1.3.10-1.fc12
2010-10-28 05:58:28
[SECURITY] Fedora 14 Update: apr-util-1.3.10-1.fc14
2010-11-10 01:19:10
redhat
redhat
(RHSA-2010:0950) Moderate: apr-util security update
2010-12-07 00:00:00
(RHSA-2011:0897) Moderate: JBoss Enterprise Web Server 1.0.2 update
2011-06-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:51:33
f5
f5
K15902 : Apache vulnerability CVE-2010-1623
2015-09-16 00:00:00
SOL15902 - Apache vulnerability CVE-2010-1623
2014-12-11 00:00:00
debiancve
debiancve
CVE-2010-1623
2010-10-04 21:00:00
ubuntu
ubuntu
Apache vulnerabilities
2010-11-25 00:00:00
freebsd
freebsd
apr -- multiple vunerabilities
2010-10-02 00:00:00
gentoo
gentoo
Apache Portable Runtime, APR Utility Library: Denial of service
2014-05-18 00:00:00
suse
suse
Security update for apache2 (important)
2011-11-09 19:08:34
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
hackerone
hackerone
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27

6.2 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.425 Medium

EPSS

Percentile

97.3%

JSON
Related for USN-1022-1
openvas32nessus26debian2slackware2centos1prion1cve1oraclelinux1httpd2ubuntucve2fedora3redhat2veracode1f52debiancve1ubuntu1freebsd1gentoo1suse1kaspersky1hackerone1