Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2024:1868-1

Опубликовано: 30 мая 2024
Источник: suse-cvrf

Описание

Security update for apache2

This update for apache2 fixes the following issues:

  • CVE-2023-38709: Fixed faulty input validation inside the HTTP response splitting code (bsc#1222330).
  • CVE-2024-24795: Fixed handling of malicious HTTP splitting response headers in multiple modules (bsc#1222332).
  • CVE-2024-27316: Fixed HTTP/2 CONTINUATION frames that could have been utilized for DoS attacks (bsc#1221401).

Список пакетов

Container bci/php-apache:latest
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Container suse/manager/4.3/proxy-httpd:latest
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Container suse/registry:latest
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAP
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAP-Azure
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAP-EC2
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAP-GCE
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAPCAL
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAPCAL-Azure
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAPCAL-EC2
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP4-SAPCAL-GCE
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP5-SAPCAL-Azure
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP5-SAPCAL-EC2
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
Image SLES15-SP5-SAPCAL-GCE
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
apache2-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
apache2-event-2.4.51-150400.6.17.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Linux Enterprise Module for Server Applications 15 SP6
apache2-doc-2.4.51-150400.6.17.1
SUSE Linux Enterprise Server 15 SP4-LTSS
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Manager Proxy 4.3
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
SUSE Manager Server 4.3
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1
openSUSE Leap 15.5
apache2-2.4.51-150400.6.17.1
apache2-devel-2.4.51-150400.6.17.1
apache2-doc-2.4.51-150400.6.17.1
apache2-event-2.4.51-150400.6.17.1
apache2-example-pages-2.4.51-150400.6.17.1
apache2-prefork-2.4.51-150400.6.17.1
apache2-utils-2.4.51-150400.6.17.1
apache2-worker-2.4.51-150400.6.17.1

Ссылки

Описание

Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses. This issue affects Apache HTTP Server: through 2.4.58.

Затронутые продукты
Container bci/php-apache:latest:apache2-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-prefork-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-utils-2.4.51-150400.6.17.1
Container suse/manager/4.3/proxy-httpd:latest:apache2-2.4.51-150400.6.17.1
Ссылки

Описание

HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack. Users are recommended to upgrade to version 2.4.59, which fixes this issue.

Затронутые продукты
Container bci/php-apache:latest:apache2-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-prefork-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-utils-2.4.51-150400.6.17.1
Container suse/manager/4.3/proxy-httpd:latest:apache2-2.4.51-150400.6.17.1
Ссылки

Описание

HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.

Затронутые продукты
Container bci/php-apache:latest:apache2-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-prefork-2.4.51-150400.6.17.1
Container bci/php-apache:latest:apache2-utils-2.4.51-150400.6.17.1
Container suse/manager/4.3/proxy-httpd:latest:apache2-2.4.51-150400.6.17.1
Ссылки
Уязвимость SUSE-SU-2024:1868-1