Количество 13
Количество 13
CVE-2019-0197
A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue.
CVE-2019-0197
A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue.
CVE-2019-0197
A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue.
CVE-2019-0197
A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When ...
GHSA-g33m-gfwr-29g4
A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue.
BDU:2019-04410
Уязвимость реализации сетевого протокола HTTP/2 веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании или привести к неверной конфигурации сервера
openSUSE-SU-2019:1258-1
Security update for apache2
openSUSE-SU-2019:1209-1
Security update for apache2
openSUSE-SU-2019:1190-1
Security update for apache2
SUSE-SU-2019:0878-1
Security update for apache2
SUSE-SU-2019:0873-1
Security update for apache2
RLSA-2020:4751
Moderate: httpd:2.4 security, bug fix, and enhancement update
ELSA-2020-4751
ELSA-2020-4751: httpd:2.4 security, bug fix, and enhancement update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-0197 A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue. | CVSS3: 4.2 | 2% Низкий | около 6 лет назад |
 | CVE-2019-0197 A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue. | CVSS3: 4.2 | 2% Низкий | больше 6 лет назад |
 | CVE-2019-0197 A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue. | CVSS3: 4.2 | 2% Низкий | около 6 лет назад |
| CVE-2019-0197 A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When ... | CVSS3: 4.2 | 2% Низкий | около 6 лет назад |
| GHSA-g33m-gfwr-29g4 A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set "H2Upgrade on" are unaffected by this issue. | CVSS3: 4.2 | 2% Низкий | около 3 лет назад |
 | BDU:2019-04410 Уязвимость реализации сетевого протокола HTTP/2 веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании или привести к неверной конфигурации сервера | CVSS3: 4.2 | 2% Низкий | больше 6 лет назад |
 | openSUSE-SU-2019:1258-1 Security update for apache2 | около 6 лет назад | ||
| openSUSE-SU-2019:1209-1 Security update for apache2 | около 6 лет назад | ||
| openSUSE-SU-2019:1190-1 Security update for apache2 | около 6 лет назад | ||
| SUSE-SU-2019:0878-1 Security update for apache2 | около 6 лет назад | ||
| SUSE-SU-2019:0873-1 Security update for apache2 | около 6 лет назад | ||
 | RLSA-2020:4751 Moderate: httpd:2.4 security, bug fix, and enhancement update | больше 4 лет назад | ||
| ELSA-2020-4751 ELSA-2020-4751: httpd:2.4 security, bug fix, and enhancement update (MODERATE) | больше 4 лет назад |
Уязвимостей на страницу