[SUSE-SU-2024:1963-1] Security update for apache2
Severity
Important
CVEs
3
Security update for apache2
This update for apache2 fixes the following issues:
- CVE-2023-38709: Fixed HTTP response splitting (bsc#1222330).
- CVE-2024-24795: Fixed HTTP response splitting in multiple modules (bsc#1222332).
- CVE-2024-27316: Fixed HTTP/2 CONTINUATION frames can be utilized for DoS attacks (bsc#1221401).
- ID
- SUSE-SU-2024:1963-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2024/suse-su-20241963-1/
- Published
-
2024-06-10T11:09:42
(3 months ago) - Modified
-
2024-06-10T11:09:42
(3 months ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2024-1931
- ALAS2-2024-2524
- ALAS2-2024-2532
- ALPINE:CVE-2023-38709
- ALPINE:CVE-2024-24795
- ALPINE:CVE-2024-27316
- ALSA-2024:1786
- ALSA-2024:1872
- ALSA-2024:2564
- ALSA-2024:4197
- DSA-5662-1
- ELSA-2024-1786
- ELSA-2024-1872
- ELSA-2024-2564
- ELSA-2024-4197
- FEDORA-2024-1f11550e31
- FEDORA-2024-4812897dd1
- FEDORA-2024-528301bac2
- FEDORA-2024-937be154d8
- FEDORA-2024-c2f6576348
- FEDORA-2024-d0dccd6b96
- FREEBSD:8E6F684B-F333-11EE-A573-84A93843EB75
- RHSA-2024:1786
- RHSA-2024:1872
- RHSA-2024:2564
- RHSA-2024:4197
- RLSA-2024:2564
- SSA:2024-095-01
- SUSE-SU-2024:1627-1
- SUSE-SU-2024:1788-1
- SUSE-SU-2024:1868-1
- USN-6729-1
- USN-6729-2
- USN-6729-3
- VU:421644
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1963-1.json | |
Suse | URL for SUSE-SU-2024:1963-1 | https://www.suse.com/support/update/announcement/2024/suse-su-20241963-1/ | |
Suse | E-Mail link for SUSE-SU-2024:1963-1 | https://lists.suse.com/pipermail/sle-security-updates/2024-June/018665.html | |
Bugzilla | SUSE Bug 1221401 | https://bugzilla.suse.com/1221401 | |
Bugzilla | SUSE Bug 1222330 | https://bugzilla.suse.com/1222330 | |
Bugzilla | SUSE Bug 1222332 | https://bugzilla.suse.com/1222332 | |
CVE | SUSE CVE CVE-2023-38709 page | https://www.suse.com/security/cve/CVE-2023-38709/ | |
CVE | SUSE CVE CVE-2024-24795 page | https://www.suse.com/security/cve/CVE-2024-24795/ | |
CVE | SUSE CVE CVE-2024-27316 page | https://www.suse.com/security/cve/CVE-2024-27316/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |