Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2011-3192 (GCVE-0-2011-3192)
Vulnerability from cvelistv5 – Published: 2011-08-29 15:00 – Updated: 2024-08-06 23:29
VLAI?
EPSS
Summary
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T23:29:55.461Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "45606",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45606"
},
{
"name": "RHSA-2011:1369",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"name": "RHSA-2011:1329",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"name": "HPSBUX02707",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "SUSE-SU-2011:1010",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"name": "SSRT100966",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "openSUSE-SU-2011:0993",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"name": "1025960",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1025960"
},
{
"name": "[dev] 20110823 Re: DoS with mod_deflate \u0026 range requests",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"name": "SSRT100624",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "17696",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"name": "HPSBUX02702",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "46000",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/46000"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"name": "HPSBOV02822",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "SSRT100619",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "20110830 Apache HTTPd Range Header Denial of Service Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"name": "USN-1199-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"name": "MDVSA-2011:130",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"name": "49303",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/49303"
},
{
"name": "74721",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/74721"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "20110824 Re: Apache Killer",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"name": "APPLE-SA-2011-10-12-3",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "oval:org.mitre.oval:def:14824",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"name": "[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \\(CVE-2011-3192\\)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e"
},
{
"name": "RHSA-2011:1330",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"name": "apache-http-byterange-dos(69396)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"name": "46126",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/46126"
},
{
"name": "RHSA-2011:1245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"name": "oval:org.mitre.oval:def:18827",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"name": "SSRT100626",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"name": "46125",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/46125"
},
{
"name": "HPSBMU02766",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "VU#405811",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"name": "20110820 Apache Killer",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"name": "SSRT100852",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "SUSE-SU-2011:1216",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"name": "oval:org.mitre.oval:def:14762",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"name": "SUSE-SU-2011:1007",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"name": "HPSBMU02776",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "SUSE-SU-2011:1000",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"name": "RHSA-2011:1294",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"name": "MDVSA-2013:150",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"name": "SUSE-SU-2011:1229",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"name": "HPSBMU02704",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "RHSA-2011:1300",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"name": "SSRT100606",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "45937",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45937"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [7/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-08-20T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-06T10:09:46",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "45606",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45606"
},
{
"name": "RHSA-2011:1369",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"name": "RHSA-2011:1329",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"name": "HPSBUX02707",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "SUSE-SU-2011:1010",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"name": "SSRT100966",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "openSUSE-SU-2011:0993",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"name": "1025960",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1025960"
},
{
"name": "[dev] 20110823 Re: DoS with mod_deflate \u0026 range requests",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"name": "SSRT100624",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "17696",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"name": "HPSBUX02702",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "46000",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/46000"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"name": "HPSBOV02822",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "SSRT100619",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "20110830 Apache HTTPd Range Header Denial of Service Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"name": "USN-1199-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"name": "MDVSA-2011:130",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"name": "49303",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/49303"
},
{
"name": "74721",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/74721"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "20110824 Re: Apache Killer",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"name": "APPLE-SA-2011-10-12-3",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "oval:org.mitre.oval:def:14824",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"name": "[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \\(CVE-2011-3192\\)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e"
},
{
"name": "RHSA-2011:1330",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"name": "apache-http-byterange-dos(69396)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"name": "46126",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/46126"
},
{
"name": "RHSA-2011:1245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"name": "oval:org.mitre.oval:def:18827",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"name": "SSRT100626",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"name": "46125",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/46125"
},
{
"name": "HPSBMU02766",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "VU#405811",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"name": "20110820 Apache Killer",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"name": "SSRT100852",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "SUSE-SU-2011:1216",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"name": "oval:org.mitre.oval:def:14762",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"name": "SUSE-SU-2011:1007",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"name": "HPSBMU02776",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "SUSE-SU-2011:1000",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"name": "RHSA-2011:1294",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"name": "MDVSA-2013:150",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"name": "SUSE-SU-2011:1229",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"name": "HPSBMU02704",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "RHSA-2011:1300",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"name": "SSRT100606",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "45937",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45937"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [7/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-3192",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "45606",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45606"
},
{
"name": "RHSA-2011:1369",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"name": "RHSA-2011:1329",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"name": "HPSBUX02707",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "SUSE-SU-2011:1010",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"name": "SSRT100966",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "openSUSE-SU-2011:0993",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"name": "http://www.gossamer-threads.com/lists/apache/dev/401638",
"refsource": "CONFIRM",
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"name": "1025960",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025960"
},
{
"name": "[dev] 20110823 Re: DoS with mod_deflate \u0026 range requests",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=732928",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"name": "SSRT100624",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "17696",
"refsource": "EXPLOIT-DB",
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"name": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714",
"refsource": "CONFIRM",
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"name": "HPSBUX02702",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "46000",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46000"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"name": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011",
"refsource": "CONFIRM",
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"name": "HPSBOV02822",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "SSRT100619",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "20110830 Apache HTTPd Range Header Denial of Service Vulnerability",
"refsource": "CISCO",
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"name": "USN-1199-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"name": "MDVSA-2011:130",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"name": "49303",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/49303"
},
{
"name": "74721",
"refsource": "OSVDB",
"url": "http://osvdb.org/74721"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "20110824 Re: Apache Killer",
"refsource": "FULLDISC",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"name": "APPLE-SA-2011-10-12-3",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "oval:org.mitre.oval:def:14824",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"name": "[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \\(CVE-2011-3192\\)",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD@minotaur.apache.org%3e"
},
{
"name": "RHSA-2011:1330",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"name": "apache-http-byterange-dos(69396)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"name": "46126",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46126"
},
{
"name": "RHSA-2011:1245",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"name": "oval:org.mitre.oval:def:18827",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"name": "http://www.apache.org/dist/httpd/Announcement2.2.html",
"refsource": "CONFIRM",
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"name": "SSRT100626",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"name": "46125",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46125"
},
{
"name": "HPSBMU02766",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "VU#405811",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"name": "20110820 Apache Killer",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"name": "SSRT100852",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "http://support.apple.com/kb/HT5002",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "SUSE-SU-2011:1216",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"name": "oval:org.mitre.oval:def:14762",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"name": "SUSE-SU-2011:1007",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"name": "HPSBMU02776",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "SUSE-SU-2011:1000",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"name": "RHSA-2011:1294",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"name": "MDVSA-2013:150",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"name": "SUSE-SU-2011:1229",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"name": "HPSBMU02704",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "RHSA-2011:1300",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"name": "SSRT100606",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "45937",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45937"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [7/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2011-3192",
"datePublished": "2011-08-29T15:00:00",
"dateReserved": "2011-08-19T00:00:00",
"dateUpdated": "2024-08-06T23:29:55.461Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0.35\", \"versionEndExcluding\": \"2.0.65\", \"matchCriteriaId\": \"E8032B39-37CC-4B9F-8D09-A0171E66BE47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.2.0\", \"versionEndExcluding\": \"2.2.20\", \"matchCriteriaId\": \"43A849EE-9D31-4289-84AF-E6831294297F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5646FDE9-CF21-46A9-B89D-F5BBDB4249AF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE554781-1EB9-446E-911F-6C11970C47F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*\", \"matchCriteriaId\": \"105187A7-2AFE-46F9-B0A9-F09C7E10BFBD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*\", \"matchCriteriaId\": \"79A35457-EAA3-4BF9-A4DA-B2E414A75A02\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*\", \"matchCriteriaId\": \"D1D7B467-58DD-45F1-9F1F-632620DF072A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*\", \"matchCriteriaId\": \"A44C3422-0D42-473E-ABB4-279D7494EE2F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*\", \"matchCriteriaId\": \"A6B7CDCA-6F39-4113-B5D3-3AA9D7F3D809\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*\", \"matchCriteriaId\": \"3DB8A616-865B-4E70-BA2E-BE5F0BA7A351\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*\", \"matchCriteriaId\": \"436EF2ED-FDBB-4B64-8EC4-33C3E4253F06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*\", \"matchCriteriaId\": \"7EBFE35C-E243-43D1-883D-4398D71763CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\", \"matchCriteriaId\": \"01EDA41C-6B2E-49AF-B503-EB3882265C11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87614B58-24AB-49FB-9C84-E8DDBA16353B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF49D26F-142E-468B-87C1-BABEA445255C\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.\"}, {\"lang\": \"es\", \"value\": \"El filtro byterange en el Servidor Apache HTTP v1.3.x, v2.0.x hasta v2.0.64, y v2.2.x hasta v2.2.19 permite a tacantes remotos provocar una denegaci\\u00f3n de servicio (consumo de memoria y CPU) a trav\\u00e9s de una cabecera Range que expresa m\\u00faltiple rangos de solapamiento, como se explot\\u00f3 en Agosto 2011, una vulnerabilidad diferente que CVE-2007-0086.\"}]",
"id": "CVE-2011-3192",
"lastModified": "2024-11-21T01:29:56.747",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2011-08-29T15:55:02.017",
"references": "[{\"url\": \"http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://blogs.oracle.com/security/entry/security_alert_for_cve_2011\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"http://osvdb.org/74721\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2011/Aug/175\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/45606\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Not Applicable\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/45937\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46000\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46125\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46126\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://securitytracker.com/id?1025960\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://support.apple.com/kb/HT5002\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.apache.org/dist/httpd/Announcement2.2.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.exploit-db.com/exploits/17696\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.gossamer-threads.com/lists/apache/dev/401638\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/405811\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2011:130\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1245.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1294.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1300.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1329.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1330.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1369.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/49303\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1199-1\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=732928\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/69396\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://issues.apache.org/bugzilla/show_bug.cgi?id=51714\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://blogs.oracle.com/security/entry/security_alert_for_cve_2011\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Mailing List\"]}, {\"url\": \"http://osvdb.org/74721\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2011/Aug/175\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/45606\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/45937\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46000\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46125\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/46126\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://securitytracker.com/id?1025960\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://support.apple.com/kb/HT5002\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.apache.org/dist/httpd/Announcement2.2.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.exploit-db.com/exploits/17696\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.gossamer-threads.com/lists/apache/dev/401638\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/405811\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2011:130\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1245.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1294.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1300.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1329.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1330.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1369.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/49303\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1199-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=732928\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/69396\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://issues.apache.org/bugzilla/show_bug.cgi?id=51714\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2011-3192\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2011-08-29T15:55:02.017\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.\"},{\"lang\":\"es\",\"value\":\"El filtro byterange en el Servidor Apache HTTP v1.3.x, v2.0.x hasta v2.0.64, y v2.2.x hasta v2.2.19 permite a tacantes remotos provocar una denegaci\u00f3n de servicio (consumo de memoria y CPU) a trav\u00e9s de una cabecera Range que expresa m\u00faltiple rangos de solapamiento, como se explot\u00f3 en Agosto 2011, una vulnerabilidad diferente que CVE-2007-0086.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.35\",\"versionEndExcluding\":\"2.0.65\",\"matchCriteriaId\":\"E8032B39-37CC-4B9F-8D09-A0171E66BE47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.2.0\",\"versionEndExcluding\":\"2.2.20\",\"matchCriteriaId\":\"43A849EE-9D31-4289-84AF-E6831294297F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5646FDE9-CF21-46A9-B89D-F5BBDB4249AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE554781-1EB9-446E-911F-6C11970C47F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*\",\"matchCriteriaId\":\"105187A7-2AFE-46F9-B0A9-F09C7E10BFBD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*\",\"matchCriteriaId\":\"79A35457-EAA3-4BF9-A4DA-B2E414A75A02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*\",\"matchCriteriaId\":\"D1D7B467-58DD-45F1-9F1F-632620DF072A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*\",\"matchCriteriaId\":\"A44C3422-0D42-473E-ABB4-279D7494EE2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*\",\"matchCriteriaId\":\"A6B7CDCA-6F39-4113-B5D3-3AA9D7F3D809\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DB8A616-865B-4E70-BA2E-BE5F0BA7A351\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"436EF2ED-FDBB-4B64-8EC4-33C3E4253F06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"7EBFE35C-E243-43D1-883D-4398D71763CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"01EDA41C-6B2E-49AF-B503-EB3882265C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87614B58-24AB-49FB-9C84-E8DDBA16353B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF49D26F-142E-468B-87C1-BABEA445255C\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://blogs.oracle.com/security/entry/security_alert_for_cve_2011\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"http://osvdb.org/74721\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://seclists.org/fulldisclosure/2011/Aug/175\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/45606\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/45937\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46000\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46125\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46126\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://securitytracker.com/id?1025960\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.apache.org/dist/httpd/Announcement2.2.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.exploit-db.com/exploits/17696\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.gossamer-threads.com/lists/apache/dev/401638\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/405811\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:130\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1245.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1294.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1300.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1329.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1330.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1369.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/49303\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1199-1\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=732928\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/69396\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://issues.apache.org/bugzilla/show_bug.cgi?id=51714\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://blogs.oracle.com/security/entry/security_alert_for_cve_2011\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\"]},{\"url\":\"http://osvdb.org/74721\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://seclists.org/fulldisclosure/2011/Aug/175\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/45606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/45937\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46000\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/46126\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://securitytracker.com/id?1025960\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.apache.org/dist/httpd/Announcement2.2.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.exploit-db.com/exploits/17696\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.gossamer-threads.com/lists/apache/dev/401638\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/405811\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:130\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:150\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1245.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1294.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1300.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1329.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1330.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1369.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/49303\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1199-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=732928\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/69396\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://issues.apache.org/bugzilla/show_bug.cgi?id=51714\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTA-2012-AVI-221
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans HP Onboard Administrator. Son exploitation permet la réalisation d'un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP Onboard Administrator versions 3.50 et antérieures.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eHP Onboard Administrator\u003c/SPAN\u003e versions 3.50 et ant\u00e9rieures.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2012-AVI-221",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-04-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans \u003cspan class=\"textit\"\u003eHP Onboard\nAdministrator\u003c/span\u003e. Son exploitation permet la r\u00e9alisation d\u0027un d\u00e9ni\nde service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans HP Onboard Administrator",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03285138 du 17 avril 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03285138"
}
]
}
CERTA-2011-AVI-560
Vulnerability from certfr_avis - Published: - Updated:
Trois vulnérabilités dans Cadic Intégrale permettent d'exécuter du code arbitraire à distance, de réaliser un déni de service ou de contourner le mécanisme d'authentification.
Description
Trois vulnérabilités ont été découvertes dans Cadic Intégrale :
- le serveur Apache installé est sensible au problème du traitement du paramètre range (CVE-2011-3192), ce qui permet de réaliser un déni de service à distance ;
- un composant fourni avec Cadic Intégrale permet le dépôt de fichiers. Il est ainsi possible de prendre le contrôle à distance du serveur ou d'exécuter du code arbitraire ;
- il est possible, dans une configuration très particulière, de contourner le mécanisme d'authentification.
Solution
Des correctifs sont disponibles auprès de l'éditeur ou via le site du club.
Cadic Intégrale versions 2007 (5.4.x), 2009 (5.5.x) et 2011.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eCadic Int\u00e9grale\u003c/SPAN\u003e versions 2007 (5.4.x), 2009 (5.5.x) et 2011.\u003c/P\u003e",
"content": "## Description\n\nTrois vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Cadic Int\u00e9grale :\n\n- le serveur Apache install\u00e9 est sensible au probl\u00e8me du traitement du\n param\u00e8tre range (CVE-2011-3192), ce qui permet de r\u00e9aliser un d\u00e9ni\n de service \u00e0 distance ;\n- un composant fourni avec Cadic Int\u00e9grale permet le d\u00e9p\u00f4t de\n fichiers. Il est ainsi possible de prendre le contr\u00f4le \u00e0 distance du\n serveur ou d\u0027ex\u00e9cuter du code arbitraire ;\n- il est possible, dans une configuration tr\u00e8s particuli\u00e8re, de\n contourner le m\u00e9canisme d\u0027authentification.\n\n## Solution\n\nDes correctifs sont disponibles aupr\u00e8s de l\u0027\u00e9diteur ou via le site du\nclub.\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Site du Club Cadic :",
"url": "http://club.cadic.fr/"
}
],
"reference": "CERTA-2011-AVI-560",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Trois vuln\u00e9rabilit\u00e9s dans \u003cspan class=\"textit\"\u003eCadic Int\u00e9grale\u003c/span\u003e\npermettent d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance, de r\u00e9aliser un d\u00e9ni\nde service ou de contourner le m\u00e9canisme d\u0027authentification.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans Cadic Int\u00e9grale",
"vendor_advisories": [
{
"published_at": null,
"title": "Soci\u00e9t\u00e9 Cadic",
"url": null
}
]
}
CERTA-2012-AVI-713
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans Avaya Experience Portal. Elle permet à un attaquant de provoquer un déni de service au moyen de requêtes HTTP spécialement conçues. La vulnérabilité concerne le composant Apache HTTP Server.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Avaya Experience Portal versions antérieures à 6.0 SP1
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eAvaya Experience Portal versions ant\u00e9rieures \u00e0 6.0 SP1\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2012-AVI-713",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-12-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans \u003cspan class=\"textit\"\u003eAvaya\nExperience Portal\u003c/span\u003e. Elle permet \u00e0 un attaquant de provoquer un\nd\u00e9ni de service au moyen de requ\u00eates HTTP sp\u00e9cialement con\u00e7ues. La\nvuln\u00e9rabilit\u00e9 concerne le composant \u003cspan class=\"textit\"\u003eApache HTTP\nServer\u003c/span\u003e.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Avaya Experience Portal",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ASA-2011-281 du 21 septembre 2011",
"url": "https://downloads.avaya.com/css/P8/documents/100148618"
}
]
}
CERTA-2011-AVI-530
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans les produits Oracle permet à un utilisateur malintentionné de provoquer un déni de service à distance.
Description
Une vulnérabilité dans les produits Oracle permet à un utilisateur malintentionné de provoquer un déni de service à distance dans certaines conditions.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle Application Server 10g Release 3, version 10.1.3.5.0 avec Apache installé ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 2, version 10.1.2.3.0 avec Apache installé. | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 avec Apache install\u00e9 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 avec Apache install\u00e9.",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 dans les produits Oracle permet \u00e0 un utilisateur\nmalintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0 distance dans certaines\nconditions.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Avis CERTA-2011-AVI-516 :",
"url": "http://www.certa.ssi.gouv.fr/site/CERTA-2011-AVI-516/index.html"
}
],
"reference": "CERTA-2011-AVI-530",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans les produits Oracle permet \u00e0 un utilisateur\nmalintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle du 15 septembre 2011",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
}
]
}
CERTA-2011-AVI-488
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans Cisco NX-OS peut être utilisée pour réaliser un déni de service à distance.
Description
Une vulnérabilitié a été corrigée dans Cisco NX-OS. Cette vulnérabilité affecte le serveur httpd Apache. Elle peut être utilisée à l'aide de requêtes HTTP spécialement conçues (utilisation de l'entête range avec des intervalles se chevauchant) pour provoquer un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Cisco | TelePresence VCS | Cisco TelePresence Video Communication Server (Cisco TelePresence VCS) ; | ||
| Cisco | N/A | Cisco Quad ; | ||
| Cisco | N/A | CiscoWorks LAN Management Solution. | ||
| Cisco | N/A | Cisco Mobility Services Engine ; | ||
| Cisco | N/A | Cisco Wireless Control System (WCS) ; | ||
| Cisco | N/A | Cisco Wild Area Application Services (WAAS) Software ; | ||
| Cisco | NX-OS | Cisco MDS 9000 NX-OS versions antérieures à la 4.2 ; | ||
| Cisco | N/A | Cisco Video Surveillance Manager (VSM) ; | ||
| Cisco | N/A | Cisco Network Collector ; | ||
| Cisco | N/A | CiscoWorks Common Services ; | ||
| Cisco | N/A | Cisco SAN-OS 3.x ; | ||
| Cisco | NX-OS | Cisco NX-OS Software pour Cisco Nexus 7000 Series Switches versions antérieures à la 5.1 ; | ||
| Cisco | N/A | Cisco Video Surveillance Operations Manager (VSOM) ; | ||
| Cisco | N/A | Tous les systèmes Cisco CTS TelePresence ; | ||
| Cisco | N/A | Management Center for Cisco Security Agent ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cisco TelePresence Video Communication Server (Cisco TelePresence VCS) ;",
"product": {
"name": "TelePresence VCS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Quad ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "CiscoWorks LAN Management Solution.",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Mobility Services Engine ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Wireless Control System (WCS) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Wild Area Application Services (WAAS) Software ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco MDS 9000 NX-OS versions ant\u00e9rieures \u00e0 la 4.2 ;",
"product": {
"name": "NX-OS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Video Surveillance Manager (VSM) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Network Collector ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "CiscoWorks Common Services ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco SAN-OS 3.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco NX-OS Software pour Cisco Nexus 7000 Series Switches versions ant\u00e9rieures \u00e0 la 5.1 ;",
"product": {
"name": "NX-OS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Video Surveillance Operations Manager (VSOM) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Tous les syst\u00e8mes Cisco CTS TelePresence ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Management Center for Cisco Security Agent ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabiliti\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Cisco NX-OS. Cette vuln\u00e9rabilit\u00e9\naffecte le serveur httpd Apache. Elle peut \u00eatre utilis\u00e9e \u00e0 l\u0027aide de\nrequ\u00eates HTTP sp\u00e9cialement con\u00e7ues (utilisation de l\u0027ent\u00eate range avec\ndes intervalles se chevauchant) pour provoquer un d\u00e9ni de service \u00e0\ndistance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Cisco 20110830-apache du 30 ao\u00fbt 2011 :",
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20110830-apache.shtml"
}
],
"reference": "CERTA-2011-AVI-488",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-01T00:00:00.000000"
},
{
"description": "modification du titre et ajout de syst\u00e8mes vuln\u00e9rables.",
"revision_date": "2011-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans Cisco NX-OS peut \u00eatre utilis\u00e9e pour r\u00e9aliser un\nd\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Cisco",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20110830-apache",
"url": null
}
]
}
CERTA-2012-AVI-024
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités présentes dans de nombreux produits Oracle ont été corrigées.
Description
Plusieurs vulnérabilités dans les produits Oracle peuvent être exploitées, à distance ou depuis le réseau local, afin de porter atteinte à la confidentialité ou à l'intégrité des données présentes sur le système, de réaliser un déni de service ou d'exécuter du code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise CRM version 8.9 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Transportation Management versions 5.5, 6.0, 6.1, 6.2 ; | ||
| Oracle | Weblogic | Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ; | ||
| Oracle | N/A | Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ; | ||
| Oracle | MySQL | Oracle MySQL Server, versions 5.0, 5.1, 5.5. | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HCM versions 8.9, 9.0, 9.1 ; | ||
| Oracle | N/A | Oracle Database 10g Release 1 version 10.1.0.5 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2 versions 11.2.0.2, 11.2.0.3 ; | ||
| Oracle | N/A | Oracle VM VirtualBox version 4.1 ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3 version 10.1.3.5.0 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i version 11.5.10.2 ; | ||
| Oracle | N/A | Oracle JDEdwards version 8.98 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1 versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; | ||
| Oracle | N/A | Oracle Outside In Technology versions 8.3.5, 8.3.7 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools version 8.52 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1 version 11.1.0.7 ; | ||
| Oracle | N/A | Oracle Virtual Desktop Infrastructure version 3.2 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 12 versions 12.1.2, 12.1.3 ; |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle PeopleSoft Enterprise CRM version 8.9 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Transportation Management versions 5.5, 6.0, 6.1, 6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle MySQL Server, versions 5.0, 5.1, 5.5.",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HCM versions 8.9, 9.0, 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 1 version 10.1.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2 versions 11.2.0.2, 11.2.0.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle VM VirtualBox version 4.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3 version 10.1.3.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle JDEdwards version 8.98 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1 versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology versions 8.3.5, 8.3.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools version 8.52 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1 version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Virtual Desktop Infrastructure version 3.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 12 versions 12.1.2, 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits Oracle peuvent \u00eatre\nexploit\u00e9es, \u00e0 distance ou depuis le r\u00e9seau local, afin de porter\natteinte \u00e0 la confidentialit\u00e9 ou \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es pr\u00e9sentes sur\nle syst\u00e8me, de r\u00e9aliser un d\u00e9ni de service ou d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0487",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0487"
},
{
"name": "CVE-2012-0088",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0088"
},
{
"name": "CVE-2011-2321",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2321"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3509"
},
{
"name": "CVE-2012-0109",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0109"
},
{
"name": "CVE-2012-0110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0110"
},
{
"name": "CVE-2012-0115",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0115"
},
{
"name": "CVE-2012-0074",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0074"
},
{
"name": "CVE-2012-0078",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0078"
},
{
"name": "CVE-2012-0485",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0485"
},
{
"name": "CVE-2012-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0118"
},
{
"name": "CVE-2011-2326",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2326"
},
{
"name": "CVE-2012-0491",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0491"
},
{
"name": "CVE-2012-0099",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0099"
},
{
"name": "CVE-2012-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0098"
},
{
"name": "CVE-2012-0119",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0119"
},
{
"name": "CVE-2011-2271",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2271"
},
{
"name": "CVE-2012-0492",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0492"
},
{
"name": "CVE-2012-0096",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0096"
},
{
"name": "CVE-2012-0494",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0494"
},
{
"name": "CVE-2012-0117",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0117"
},
{
"name": "CVE-2012-0105",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0105"
},
{
"name": "CVE-2011-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3568"
},
{
"name": "CVE-2012-0488",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0488"
},
{
"name": "CVE-2011-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3570"
},
{
"name": "CVE-2012-0116",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0116"
},
{
"name": "CVE-2012-0101",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0101"
},
{
"name": "CVE-2012-0489",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0489"
},
{
"name": "CVE-2012-0085",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0085"
},
{
"name": "CVE-2012-0094",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0094"
},
{
"name": "CVE-2012-0087",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0087"
},
{
"name": "CVE-2012-0114",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0114"
},
{
"name": "CVE-2012-0081",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0081"
},
{
"name": "CVE-2012-0072",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0072"
},
{
"name": "CVE-2012-0103",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0103"
},
{
"name": "CVE-2011-3565",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3565"
},
{
"name": "CVE-2011-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4517"
},
{
"name": "CVE-2012-0075",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0075"
},
{
"name": "CVE-2011-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3566"
},
{
"name": "CVE-2011-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3569"
},
{
"name": "CVE-2012-0097",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0097"
},
{
"name": "CVE-2012-0084",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0084"
},
{
"name": "CVE-2011-3574",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3574"
},
{
"name": "CVE-2011-3531",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3531"
},
{
"name": "CVE-2011-3514",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3514"
},
{
"name": "CVE-2011-3564",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3564"
},
{
"name": "CVE-2011-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4516"
},
{
"name": "CVE-2012-0079",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0079"
},
{
"name": "CVE-2011-3524",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3524"
},
{
"name": "CVE-2012-0076",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0076"
},
{
"name": "CVE-2012-0080",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0080"
},
{
"name": "CVE-2011-3573",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3573"
},
{
"name": "CVE-2011-2325",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2325"
},
{
"name": "CVE-2011-2324",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2324"
},
{
"name": "CVE-2012-0486",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0486"
},
{
"name": "CVE-2012-0082",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0082"
},
{
"name": "CVE-2012-0091",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0091"
},
{
"name": "CVE-2012-0104",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0104"
},
{
"name": "CVE-2012-0089",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0089"
},
{
"name": "CVE-2012-0484",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0484"
},
{
"name": "CVE-2012-0113",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0113"
},
{
"name": "CVE-2012-0077",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0077"
},
{
"name": "CVE-2011-2317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2317"
},
{
"name": "CVE-2012-0073",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0073"
},
{
"name": "CVE-2011-3571",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3571"
},
{
"name": "CVE-2012-0102",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0102"
},
{
"name": "CVE-2012-0100",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0100"
},
{
"name": "CVE-2012-0493",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0493"
},
{
"name": "CVE-2012-0120",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0120"
},
{
"name": "CVE-2012-0495",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0495"
},
{
"name": "CVE-2012-0490",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0490"
},
{
"name": "CVE-2012-0496",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0496"
},
{
"name": "CVE-2012-0112",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0112"
},
{
"name": "CVE-2011-5035",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5035"
},
{
"name": "CVE-2012-0111",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0111"
},
{
"name": "CVE-2012-0083",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0083"
},
{
"name": "CVE-2011-2262",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2262"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Oracle Critical Patch Update du 17 janvier 2012 :",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
}
],
"reference": "CERTA-2012-AVI-024",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-01-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans de nombreux produits Oracle ont\n\u00e9t\u00e9 corrig\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle Critical Patch Update du 17 janvier 2012",
"url": null
}
]
}
CERTA-2012-AVI-024
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités présentes dans de nombreux produits Oracle ont été corrigées.
Description
Plusieurs vulnérabilités dans les produits Oracle peuvent être exploitées, à distance ou depuis le réseau local, afin de porter atteinte à la confidentialité ou à l'intégrité des données présentes sur le système, de réaliser un déni de service ou d'exécuter du code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise CRM version 8.9 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Transportation Management versions 5.5, 6.0, 6.1, 6.2 ; | ||
| Oracle | Weblogic | Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ; | ||
| Oracle | N/A | Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ; | ||
| Oracle | MySQL | Oracle MySQL Server, versions 5.0, 5.1, 5.5. | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HCM versions 8.9, 9.0, 9.1 ; | ||
| Oracle | N/A | Oracle Database 10g Release 1 version 10.1.0.5 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2 versions 11.2.0.2, 11.2.0.3 ; | ||
| Oracle | N/A | Oracle VM VirtualBox version 4.1 ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3 version 10.1.3.5.0 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i version 11.5.10.2 ; | ||
| Oracle | N/A | Oracle JDEdwards version 8.98 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1 versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; | ||
| Oracle | N/A | Oracle Outside In Technology versions 8.3.5, 8.3.7 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools version 8.52 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1 version 11.1.0.7 ; | ||
| Oracle | N/A | Oracle Virtual Desktop Infrastructure version 3.2 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 12 versions 12.1.2, 12.1.3 ; |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle PeopleSoft Enterprise CRM version 8.9 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Transportation Management versions 5.5, 6.0, 6.1, 6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle MySQL Server, versions 5.0, 5.1, 5.5.",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HCM versions 8.9, 9.0, 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 1 version 10.1.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2 versions 11.2.0.2, 11.2.0.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle VM VirtualBox version 4.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3 version 10.1.3.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle JDEdwards version 8.98 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1 versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology versions 8.3.5, 8.3.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools version 8.52 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1 version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Virtual Desktop Infrastructure version 3.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 12 versions 12.1.2, 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits Oracle peuvent \u00eatre\nexploit\u00e9es, \u00e0 distance ou depuis le r\u00e9seau local, afin de porter\natteinte \u00e0 la confidentialit\u00e9 ou \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es pr\u00e9sentes sur\nle syst\u00e8me, de r\u00e9aliser un d\u00e9ni de service ou d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0487",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0487"
},
{
"name": "CVE-2012-0088",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0088"
},
{
"name": "CVE-2011-2321",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2321"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3509",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3509"
},
{
"name": "CVE-2012-0109",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0109"
},
{
"name": "CVE-2012-0110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0110"
},
{
"name": "CVE-2012-0115",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0115"
},
{
"name": "CVE-2012-0074",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0074"
},
{
"name": "CVE-2012-0078",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0078"
},
{
"name": "CVE-2012-0485",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0485"
},
{
"name": "CVE-2012-0118",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0118"
},
{
"name": "CVE-2011-2326",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2326"
},
{
"name": "CVE-2012-0491",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0491"
},
{
"name": "CVE-2012-0099",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0099"
},
{
"name": "CVE-2012-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0098"
},
{
"name": "CVE-2012-0119",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0119"
},
{
"name": "CVE-2011-2271",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2271"
},
{
"name": "CVE-2012-0492",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0492"
},
{
"name": "CVE-2012-0096",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0096"
},
{
"name": "CVE-2012-0494",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0494"
},
{
"name": "CVE-2012-0117",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0117"
},
{
"name": "CVE-2012-0105",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0105"
},
{
"name": "CVE-2011-3568",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3568"
},
{
"name": "CVE-2012-0488",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0488"
},
{
"name": "CVE-2011-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3570"
},
{
"name": "CVE-2012-0116",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0116"
},
{
"name": "CVE-2012-0101",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0101"
},
{
"name": "CVE-2012-0489",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0489"
},
{
"name": "CVE-2012-0085",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0085"
},
{
"name": "CVE-2012-0094",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0094"
},
{
"name": "CVE-2012-0087",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0087"
},
{
"name": "CVE-2012-0114",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0114"
},
{
"name": "CVE-2012-0081",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0081"
},
{
"name": "CVE-2012-0072",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0072"
},
{
"name": "CVE-2012-0103",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0103"
},
{
"name": "CVE-2011-3565",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3565"
},
{
"name": "CVE-2011-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4517"
},
{
"name": "CVE-2012-0075",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0075"
},
{
"name": "CVE-2011-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3566"
},
{
"name": "CVE-2011-3569",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3569"
},
{
"name": "CVE-2012-0097",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0097"
},
{
"name": "CVE-2012-0084",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0084"
},
{
"name": "CVE-2011-3574",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3574"
},
{
"name": "CVE-2011-3531",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3531"
},
{
"name": "CVE-2011-3514",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3514"
},
{
"name": "CVE-2011-3564",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3564"
},
{
"name": "CVE-2011-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4516"
},
{
"name": "CVE-2012-0079",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0079"
},
{
"name": "CVE-2011-3524",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3524"
},
{
"name": "CVE-2012-0076",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0076"
},
{
"name": "CVE-2012-0080",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0080"
},
{
"name": "CVE-2011-3573",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3573"
},
{
"name": "CVE-2011-2325",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2325"
},
{
"name": "CVE-2011-2324",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2324"
},
{
"name": "CVE-2012-0486",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0486"
},
{
"name": "CVE-2012-0082",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0082"
},
{
"name": "CVE-2012-0091",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0091"
},
{
"name": "CVE-2012-0104",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0104"
},
{
"name": "CVE-2012-0089",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0089"
},
{
"name": "CVE-2012-0484",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0484"
},
{
"name": "CVE-2012-0113",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0113"
},
{
"name": "CVE-2012-0077",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0077"
},
{
"name": "CVE-2011-2317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2317"
},
{
"name": "CVE-2012-0073",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0073"
},
{
"name": "CVE-2011-3571",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3571"
},
{
"name": "CVE-2012-0102",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0102"
},
{
"name": "CVE-2012-0100",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0100"
},
{
"name": "CVE-2012-0493",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0493"
},
{
"name": "CVE-2012-0120",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0120"
},
{
"name": "CVE-2012-0495",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0495"
},
{
"name": "CVE-2012-0490",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0490"
},
{
"name": "CVE-2012-0496",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0496"
},
{
"name": "CVE-2012-0112",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0112"
},
{
"name": "CVE-2011-5035",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5035"
},
{
"name": "CVE-2012-0111",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0111"
},
{
"name": "CVE-2012-0083",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0083"
},
{
"name": "CVE-2011-2262",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2262"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Oracle Critical Patch Update du 17 janvier 2012 :",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
}
],
"reference": "CERTA-2012-AVI-024",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-01-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans de nombreux produits Oracle ont\n\u00e9t\u00e9 corrig\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle Critical Patch Update du 17 janvier 2012",
"url": null
}
]
}
CERTA-2011-AVI-490
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité présente dans Apache httpd permet à un utilisateur distant malintentionné de provoquer un déni de service.
Description
Une vulnérabilité relative à la gestion de certains paramètres d'en-tête HTTP est présente dans le serveur web Apache httpd. Elle permet à un utilisateur distant malintentionné de provoquer une consommation mémoire excessive du serveur au moyen d'une requête HTTP spécialement conçue.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Apache httpd versions 1.3.42 et ant\u00e9rieures.",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
},
{
"description": "Apache httpd versions 2.2.19 et ant\u00e9rieures;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
},
{
"description": "Apache httpd versions 2.0.64 et ant\u00e9rieures;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 relative \u00e0 la gestion de certains param\u00e8tres d\u0027en-t\u00eate\nHTTP est pr\u00e9sente dans le serveur web Apache httpd. Elle permet \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer une consommation m\u00e9moire\nexcessive du serveur au moyen d\u0027une requ\u00eate HTTP sp\u00e9cialement con\u00e7ue.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 HP c02997184 du 08 septembre 2011 :",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02997184"
},
{
"title": "Bulletins de s\u00e9curit\u00e9 RedHat RHSA-2011:1245-1 31 ao\u00fbt 2011 :",
"url": "http://rhn.redhat.com/errata/RHSA-2011-1245.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 2298 du 29 ao\u00fbt 2011 :",
"url": "http://www.debian.org/security/2011/dsa-2298"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20110830-apache du 09 septembre 2011 :",
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20110830-apache.shtml"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM ISS Xforce 69396 du 23 ao\u00fbt 2011 :",
"url": "http://xforce.iss.net/xforce/xfdb/69396"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2011:130 du 04 septembre 2011 :",
"url": "http://www.mandriva.com/fr/support/security/advisories/?dis=2010\u0026name=MDVSA-2011:130"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-1199-1 du 01 septembre 2011 :",
"url": "http://www.ubuntulinux.org/usn/usn-1199-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Novell (Suse) CVE-2011-3192 du 06 septembre 2011 :",
"url": "http://support.novell.com/security/cve/CVE-2011-3192.html"
},
{
"title": "Alerte de s\u00e9curit\u00e9 Oracle du 15 septembre 2011 :",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Hitachi HS11-019 du 05 septembre 2011 :",
"url": "http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-019/index.html"
}
],
"reference": "CERTA-2011-AVI-490",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-01T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences aux bulletins Cisco, Hitachi, HP, Mandriva, Novell (Suse), RedHat et Ubuntu.",
"revision_date": "2011-09-13T00:00:00.000000"
},
{
"description": "ajout de la r\u00e9f\u00e9rence au bulletin Oracle.",
"revision_date": "2011-11-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans \u003cspan class=\"textit\"\u003eApache httpd\u003c/span\u003e\npermet \u00e0 un utilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de\nservice.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Apache httpd",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apache du 30 ao\u00fbt 2011",
"url": "http://httpd.apache.org/security/vulnerabilities_22.html#2.2.20"
}
]
}
CERTA-2011-AVI-530
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans les produits Oracle permet à un utilisateur malintentionné de provoquer un déni de service à distance.
Description
Une vulnérabilité dans les produits Oracle permet à un utilisateur malintentionné de provoquer un déni de service à distance dans certaines conditions.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle Application Server 10g Release 3, version 10.1.3.5.0 avec Apache installé ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 2, version 10.1.2.3.0 avec Apache installé. | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 avec Apache install\u00e9 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 avec Apache install\u00e9.",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 dans les produits Oracle permet \u00e0 un utilisateur\nmalintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0 distance dans certaines\nconditions.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Avis CERTA-2011-AVI-516 :",
"url": "http://www.certa.ssi.gouv.fr/site/CERTA-2011-AVI-516/index.html"
}
],
"reference": "CERTA-2011-AVI-530",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans les produits Oracle permet \u00e0 un utilisateur\nmalintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle du 15 septembre 2011",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
}
]
}
CERTA-2012-AVI-221
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans HP Onboard Administrator. Son exploitation permet la réalisation d'un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP Onboard Administrator versions 3.50 et antérieures.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eHP Onboard Administrator\u003c/SPAN\u003e versions 3.50 et ant\u00e9rieures.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2012-AVI-221",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-04-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans \u003cspan class=\"textit\"\u003eHP Onboard\nAdministrator\u003c/span\u003e. Son exploitation permet la r\u00e9alisation d\u0027un d\u00e9ni\nde service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans HP Onboard Administrator",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03285138 du 17 avril 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03285138"
}
]
}
CERTA-2012-AVI-316
Vulnerability from certfr_avis - Published: - Updated:
Onze vulnérabilités ont été corrigées dans HP Onboard Administrator. L'exploitation de ces vulnérabilités peut mener à divers accès non autorisés à des données distantes et à des dénis de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Versions antérieures à HP Onboard Adminitrator v3.56.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eVersions ant\u00e9rieures \u00e0 HP Onboard Adminitrator v3.56.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0050",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0050"
},
{
"name": "CVE-2012-0053",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0053"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-4619",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4619"
},
{
"name": "CVE-2012-2110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-2110"
},
{
"name": "CVE-2011-4576",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4576"
},
{
"name": "CVE-2012-0884",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0884"
},
{
"name": "CVE-2011-4108",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4108"
},
{
"name": "CVE-2012-1583",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1583"
},
{
"name": "CVE-2011-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2691"
},
{
"name": "CVE-2011-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1473"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 HP c03315912 du 07 juin 2012 :",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03315912"
}
],
"reference": "CERTA-2012-AVI-316",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-06-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Onze vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eHP\nOnboard Administrator\u003c/span\u003e. L\u0027exploitation de ces vuln\u00e9rabilit\u00e9s peut\nmener \u00e0 divers acc\u00e8s non autoris\u00e9s \u00e0 des donn\u00e9es distantes et \u00e0 des\nd\u00e9nis de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP Onboard Administrator",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP du 07 juin 2012",
"url": null
}
]
}
CERTA-2011-AVI-586
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Oracle.
Description
De multiples vulnérabilités ont été corrigées dans les produits Oracle. Elles peuvent notamment être exploitées pour porter atteinte à la confidentialité, l'intégrité ou la disponibilité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle Siebel CRM Core and Apps, versions 8.0.0, 8.1.1 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3, version 10.1.3.5.0 ; | ||
| Oracle | N/A | Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.0.0.2, 6.0.0.3, 6.0.0.4 ; | ||
| Oracle | N/A | Oracle Outside In Technology, versions 8.3.5, 8.3.7 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2, version 11.2.0.2 ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 2, version 10.1.2.3.0 ; | ||
| Oracle | N/A | Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i, version 11.5.10.2 ; | ||
| Oracle | N/A | Oracle Clinical, Remote Data Capture, versions 4.6, 4.6.2 ; | ||
| Oracle | Weblogic | Oracle WebLogic Server, versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ; | ||
| Oracle | N/A | Oracle Linux 5 ; | ||
| Oracle | N/A | Oracle Database 10g Release 1, version 10.1.0.5 ; | ||
| Oracle | N/A | Oracle Business Intelligence Enterprise Edition, versions 11.1.1.3, 11.1.1.5 ; | ||
| Oracle | N/A | Oracle Thesaurus Management System, versions 4.6.1, 4.6.2 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.2, 12.1.3 ; | ||
| Oracle | N/A | Oracle Sun Ray ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ; | ||
| Oracle | Weblogic | Oracle WebLogic Portal, versions 9.2.3.0, 10.0.1.0, 10.2.1.0, 10.3.2.0 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1, version 11.1.0.7 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; | ||
| Oracle | N/A | Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1 ; |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle Siebel CRM Core and Apps, versions 8.0.0, 8.1.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.0.0.2, 6.0.0.3, 6.0.0.4 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology, versions 8.3.5, 8.3.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2, version 11.2.0.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i, version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Clinical, Remote Data Capture, versions 4.6, 4.6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Server, versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Linux 5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 1, version 10.1.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Business Intelligence Enterprise Edition, versions 11.1.1.3, 11.1.1.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Thesaurus Management System, versions 4.6.1, 4.6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.2, 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Ray ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Portal, versions 9.2.3.0, 10.0.1.0, 10.2.1.0, 10.3.2.0 ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1, version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits Oracle.\nElles peuvent notamment \u00eatre exploit\u00e9es pour porter atteinte \u00e0 la\nconfidentialit\u00e9, l\u0027int\u00e9grit\u00e9 ou la disponibilit\u00e9 des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2306",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2306"
},
{
"name": "CVE-2011-3532",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3532"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3536",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3536"
},
{
"name": "CVE-2011-2292",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2292"
},
{
"name": "CVE-2011-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2312"
},
{
"name": "CVE-2011-2301",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2301"
},
{
"name": "CVE-2011-3522",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3522"
},
{
"name": "CVE-2011-2313",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2313"
},
{
"name": "CVE-2011-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3517"
},
{
"name": "CVE-2011-2255",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2255"
},
{
"name": "CVE-2011-2316",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2316"
},
{
"name": "CVE-2011-3515",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3515"
},
{
"name": "CVE-2011-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3511"
},
{
"name": "CVE-2011-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3507"
},
{
"name": "CVE-2011-3519",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3519"
},
{
"name": "CVE-2011-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3513"
},
{
"name": "CVE-2011-3535",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3535"
},
{
"name": "CVE-2011-2320",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2320"
},
{
"name": "CVE-2011-2308",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2308"
},
{
"name": "CVE-2011-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3510"
},
{
"name": "CVE-2011-2311",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2311"
},
{
"name": "CVE-2011-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3518"
},
{
"name": "CVE-2011-3542",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3542"
},
{
"name": "CVE-2011-2304",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2304"
},
{
"name": "CVE-2011-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3508"
},
{
"name": "CVE-2011-3534",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3534"
},
{
"name": "CVE-2011-2309",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2309"
},
{
"name": "CVE-2011-3530",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3530"
},
{
"name": "CVE-2011-3559",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3559"
},
{
"name": "CVE-2011-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3512"
},
{
"name": "CVE-2011-2302",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2302"
},
{
"name": "CVE-2011-3528",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3528"
},
{
"name": "CVE-2011-2315",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2315"
},
{
"name": "CVE-2011-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3506"
},
{
"name": "CVE-2011-3523",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3523"
},
{
"name": "CVE-2011-2323",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2323"
},
{
"name": "CVE-2011-3526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3526"
},
{
"name": "CVE-2011-2310",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2310"
},
{
"name": "CVE-2011-2319",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2319"
},
{
"name": "CVE-2011-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3520"
},
{
"name": "CVE-2011-3533",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3533"
},
{
"name": "CVE-2011-2303",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2303"
},
{
"name": "CVE-2011-3543",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3543"
},
{
"name": "CVE-2011-3525",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3525"
},
{
"name": "CVE-2011-2322",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2322"
},
{
"name": "CVE-2011-2314",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2314"
},
{
"name": "CVE-2011-2237",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2237"
},
{
"name": "CVE-2011-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3538"
},
{
"name": "CVE-2011-3527",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3527"
},
{
"name": "CVE-2011-2327",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2327"
},
{
"name": "CVE-2011-3537",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3537"
},
{
"name": "CVE-2011-3539",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3539"
},
{
"name": "CVE-2011-2318",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2318"
},
{
"name": "CVE-2011-2286",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2286"
},
{
"name": "CVE-2011-3541",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3541"
},
{
"name": "CVE-2011-3529",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3529"
}
],
"links": [],
"reference": "CERTA-2011-AVI-586",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits Oracle.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle d\u0027octobre 2011",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
}
]
}
CERTA-2011-AVI-560
Vulnerability from certfr_avis - Published: - Updated:
Trois vulnérabilités dans Cadic Intégrale permettent d'exécuter du code arbitraire à distance, de réaliser un déni de service ou de contourner le mécanisme d'authentification.
Description
Trois vulnérabilités ont été découvertes dans Cadic Intégrale :
- le serveur Apache installé est sensible au problème du traitement du paramètre range (CVE-2011-3192), ce qui permet de réaliser un déni de service à distance ;
- un composant fourni avec Cadic Intégrale permet le dépôt de fichiers. Il est ainsi possible de prendre le contrôle à distance du serveur ou d'exécuter du code arbitraire ;
- il est possible, dans une configuration très particulière, de contourner le mécanisme d'authentification.
Solution
Des correctifs sont disponibles auprès de l'éditeur ou via le site du club.
Cadic Intégrale versions 2007 (5.4.x), 2009 (5.5.x) et 2011.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eCadic Int\u00e9grale\u003c/SPAN\u003e versions 2007 (5.4.x), 2009 (5.5.x) et 2011.\u003c/P\u003e",
"content": "## Description\n\nTrois vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Cadic Int\u00e9grale :\n\n- le serveur Apache install\u00e9 est sensible au probl\u00e8me du traitement du\n param\u00e8tre range (CVE-2011-3192), ce qui permet de r\u00e9aliser un d\u00e9ni\n de service \u00e0 distance ;\n- un composant fourni avec Cadic Int\u00e9grale permet le d\u00e9p\u00f4t de\n fichiers. Il est ainsi possible de prendre le contr\u00f4le \u00e0 distance du\n serveur ou d\u0027ex\u00e9cuter du code arbitraire ;\n- il est possible, dans une configuration tr\u00e8s particuli\u00e8re, de\n contourner le m\u00e9canisme d\u0027authentification.\n\n## Solution\n\nDes correctifs sont disponibles aupr\u00e8s de l\u0027\u00e9diteur ou via le site du\nclub.\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Site du Club Cadic :",
"url": "http://club.cadic.fr/"
}
],
"reference": "CERTA-2011-AVI-560",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Trois vuln\u00e9rabilit\u00e9s dans \u003cspan class=\"textit\"\u003eCadic Int\u00e9grale\u003c/span\u003e\npermettent d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance, de r\u00e9aliser un d\u00e9ni\nde service ou de contourner le m\u00e9canisme d\u0027authentification.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans Cadic Int\u00e9grale",
"vendor_advisories": [
{
"published_at": null,
"title": "Soci\u00e9t\u00e9 Cadic",
"url": null
}
]
}
CERTA-2012-AVI-566
Vulnerability from certfr_avis - Published: - Updated:
Des vulnérabilités ont été corrigées dans HP Secure Web Server. La plus critique d'entre elles permet à un attaquant d'accéder à du contenu non autorisé.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP Secure Web Server (SWS) pour OpenVMS version 2.2 et versions antérieures.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eHP Secure Web Server (SWS) pour OpenVMS version 2.2 et versions ant\u00e9rieures.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2012-0031",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0031"
},
{
"name": "CVE-2011-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3607"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2011-1928",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1928"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
}
],
"links": [],
"reference": "CERTA-2012-AVI-566",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-10-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Des vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eHP Secure\nWeb Server\u003c/span\u003e. La plus critique d\u0027entre elles permet \u00e0 un attaquant\nd\u0027acc\u00e9der \u00e0 du contenu non autoris\u00e9.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans HP Secure Web Server",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03517954 du 10 octobre 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03517954"
}
]
}
CERTA-2012-AVI-218
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans HP System Management Homepage. Leur exploitation permet, entre autres, d'exécuter du code arbitraire à distance et de réaliser des dénis de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP System Management Homepage versions antérieures à 7.0.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eHP System Management Homepage\u003c/SPAN\u003e versions ant\u00e9rieures \u00e0 7.0.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2202",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2202"
},
{
"name": "CVE-2011-0195",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0195"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-2483",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2483"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2011-3210",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3210"
},
{
"name": "CVE-2011-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1471"
},
{
"name": "CVE-2010-1623",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1623"
},
{
"name": "CVE-2011-3182",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3182"
},
{
"name": "CVE-2010-0734",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0734"
},
{
"name": "CVE-2010-2791",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2791"
},
{
"name": "CVE-2011-3268",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3268"
},
{
"name": "CVE-2012-0135",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0135"
},
{
"name": "CVE-2011-1153",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1153"
},
{
"name": "CVE-2010-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4645"
},
{
"name": "CVE-2010-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2068"
},
{
"name": "CVE-2010-1452",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1452"
},
{
"name": "CVE-2011-3267",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3267"
},
{
"name": "CVE-2010-4409",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4409"
},
{
"name": "CVE-2011-1148",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1148"
},
{
"name": "CVE-2011-1467",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1467"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2012-1993",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1993"
},
{
"name": "CVE-2011-2192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2192"
},
{
"name": "CVE-2011-3207",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3207"
},
{
"name": "CVE-2011-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1470"
},
{
"name": "CVE-2011-1464",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1464"
},
{
"name": "CVE-2011-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3639"
},
{
"name": "CVE-2009-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0037"
},
{
"name": "CVE-2010-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3436"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2011-1945",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1945"
},
{
"name": "CVE-2011-1928",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1928"
},
{
"name": "CVE-2011-3846",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3846"
},
{
"name": "CVE-2011-0014",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0014"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2011-1468",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1468"
},
{
"name": "CVE-2011-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1938"
},
{
"name": "CVE-2011-3189",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3189"
}
],
"links": [],
"reference": "CERTA-2012-AVI-218",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-04-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eHP System Management Homepage\u003c/span\u003e. Leur exploitation\npermet, entre autres, d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance et de\nr\u00e9aliser des d\u00e9nis de service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP System Management Homepage",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03280632 du 16 avril 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03280632"
}
]
}
CERTA-2012-AVI-316
Vulnerability from certfr_avis - Published: - Updated:
Onze vulnérabilités ont été corrigées dans HP Onboard Administrator. L'exploitation de ces vulnérabilités peut mener à divers accès non autorisés à des données distantes et à des dénis de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Versions antérieures à HP Onboard Adminitrator v3.56.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eVersions ant\u00e9rieures \u00e0 HP Onboard Adminitrator v3.56.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0050",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0050"
},
{
"name": "CVE-2012-0053",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0053"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-4619",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4619"
},
{
"name": "CVE-2012-2110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-2110"
},
{
"name": "CVE-2011-4576",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4576"
},
{
"name": "CVE-2012-0884",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0884"
},
{
"name": "CVE-2011-4108",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4108"
},
{
"name": "CVE-2012-1583",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1583"
},
{
"name": "CVE-2011-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2691"
},
{
"name": "CVE-2011-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1473"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 HP c03315912 du 07 juin 2012 :",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03315912"
}
],
"reference": "CERTA-2012-AVI-316",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-06-12T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Onze vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eHP\nOnboard Administrator\u003c/span\u003e. L\u0027exploitation de ces vuln\u00e9rabilit\u00e9s peut\nmener \u00e0 divers acc\u00e8s non autoris\u00e9s \u00e0 des donn\u00e9es distantes et \u00e0 des\nd\u00e9nis de service \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP Onboard Administrator",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP du 07 juin 2012",
"url": null
}
]
}
CERTA-2012-AVI-023
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités découvertes dans les produits IBM ont été corrigées par l'éditeur.
Description
Plusieurs vulnérabilités dans les produits IBM peuvent être exploitées par une personne malintentionnée afin de contourner la politique de sécurité, d'injecter du code indirect à distance, de réaliser un déni de service distant, d'élever ses privilèges ou encore d'exécuter du code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Rational License Key Server 8.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 6.1.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 7.0.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM HTTP Server 7.0.x.",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 8.0.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits IBM peuvent \u00eatre exploit\u00e9es\npar une personne malintentionn\u00e9e afin de contourner la politique de\ns\u00e9curit\u00e9, d\u0027injecter du code indirect \u00e0 distance, de r\u00e9aliser un d\u00e9ni de\nservice distant, d\u0027\u00e9lever ses privil\u00e8ges ou encore d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2009-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1890"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2009-3560",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3560"
},
{
"name": "CVE-2011-1389",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1389"
},
{
"name": "CVE-2010-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0434"
},
{
"name": "CVE-2010-1623",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1623"
},
{
"name": "CVE-2009-3094",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3094"
},
{
"name": "CVE-2009-3095",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3095"
},
{
"name": "CVE-2010-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2068"
},
{
"name": "CVE-2010-1452",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1452"
},
{
"name": "CVE-2009-3555",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3555"
},
{
"name": "CVE-2009-1891",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1891"
},
{
"name": "CVE-2009-0023",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0023"
},
{
"name": "CVE-2009-1956",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1956"
},
{
"name": "CVE-2009-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2412"
},
{
"name": "CVE-2011-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3607"
},
{
"name": "CVE-2009-1195",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1195"
},
{
"name": "CVE-2010-0408",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0408"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2011-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3639"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2009-3720",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3720"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2009-1955",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1955"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg21577760 du 10 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21577760"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg27014506 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg27014506"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM54061 du 12 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM54061"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM48384 du 21 septembre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM48384"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg24031821 du 17 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24031821"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM50426 du 19 octobre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM50426"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM45731 du 12 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM45731"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg227022958 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg227022958"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM47852 du 14 septembre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM47852"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg227014463 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg227014463"
}
],
"reference": "CERTA-2012-AVI-023",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-01-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans les produits IBM ont \u00e9t\u00e9\ncorrig\u00e9es par l\u0027\u00e9diteur.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": []
}
CERTFR-2014-AVI-357
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Juniper. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | NSM3000 | ||
| ESET | Security | Security Threat Response Manager | ||
| Juniper Networks | Secure Analytics | Juniper Secure Analytics | ||
| N/A | N/A | NSMExpress |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "NSM3000",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Security Threat Response Manager",
"product": {
"name": "Security",
"vendor": {
"name": "ESET",
"scada": false
}
}
},
{
"description": "Juniper Secure Analytics",
"product": {
"name": "Secure Analytics",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "NSMExpress",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0053",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0053"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2014-0460",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0460"
},
{
"name": "CVE-2014-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0063"
},
{
"name": "CVE-2013-4286",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4286"
},
{
"name": "CVE-2013-4002",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4002"
},
{
"name": "CVE-2013-5823",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5823"
},
{
"name": "CVE-2013-4590",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4590"
},
{
"name": "CVE-2012-5081",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5081"
},
{
"name": "CVE-2014-0061",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0061"
},
{
"name": "CVE-2013-2457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2457"
},
{
"name": "CVE-2013-5803",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5803"
},
{
"name": "CVE-2012-0031",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0031"
},
{
"name": "CVE-2014-0114",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0114"
},
{
"name": "CVE-2014-0067",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0067"
},
{
"name": "CVE-2014-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0411"
},
{
"name": "CVE-2013-2461",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2461"
},
{
"name": "CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"name": "CVE-2014-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0098"
},
{
"name": "CVE-2014-0453",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0453"
},
{
"name": "CVE-2013-0169",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0169"
},
{
"name": "CVE-2013-5802",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5802"
},
{
"name": "CVE-2014-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0423"
},
{
"name": "CVE-2014-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0224"
},
{
"name": "CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2013-4322",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4322"
},
{
"name": "CVE-2013-5780",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5780"
},
{
"name": "CVE-2014-0064",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0064"
},
{
"name": "CVE-2014-0065",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0065"
},
{
"name": "CVE-2013-2451",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2451"
},
{
"name": "CVE-2014-0107",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0107"
},
{
"name": "CVE-2013-2407",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2407"
},
{
"name": "CVE-2014-0033",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0033"
},
{
"name": "CVE-2014-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0062"
},
{
"name": "CVE-2014-0060",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0060"
},
{
"name": "CVE-2010-5298",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-5298"
},
{
"name": "CVE-2013-5825",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5825"
},
{
"name": "CVE-2013-1537",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1537"
},
{
"name": "CVE-2014-0198",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0198"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2013-5830",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5830"
},
{
"name": "CVE-2014-0066",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0066"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-357",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-08-14T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10642 du 13 ao\u00fbt 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10642"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10643 du 13 ao\u00fbt 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10643"
}
]
}
CERTA-2012-AVI-393
Vulnerability from certfr_avis - Published: - Updated:
Soixante-dix sept vulnérabilités ont été corrigées dans les produits Oracle. Elles concernent de nombreux composants et peuvent pour certaines être exploitées à distance. Le CERTA recommande de mettre à jour vos produits Oracle dès que possible.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle E-Business Suite Release 12 versions 12.0.4, 12.0.6, 12.1.1, 12.1.2 et 12.1.3 ; | ||
| Oracle | N/A | Oracle Identity Management 10g version 10.1.4.3 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3 version 10.1.3.5 ; | ||
| Oracle | N/A | Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4 et 10.2.0.5 ; | ||
| Oracle | N/A | Oracle Siebel CRM versions 8.1.1 et 8.2.2 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HRMS versions 9.0 et 9.1 ; | ||
| Oracle | N/A | Oracle Transportation Management versions 5.5.06, 6.0, 6.1 et 6.2 ; | ||
| Oracle | N/A | Oracle JRockit versions R28.2.3 et antérieures, R27.7.2 et antérieures ; | ||
| Oracle | N/A | Enterprise Manager Grid Control 11g Release 1 version 11.1.0.1 ; | ||
| Oracle | N/A | Oracle Secure Backup versions 10.3.0.3 et 10.4.0.1 ; | ||
| Oracle | N/A | Oracle AutoVue versions 20.0.2 et 20.1 ; | ||
| Oracle | N/A | Oracle Outside In Technology versions 8.3.5 et 8.3.7; | ||
| Oracle | N/A | Enterprise Manager Plugin pour Database 12c Release 1 versions 12.1.0.1 et 12.1.0.2 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 2 version 11.1.2.0 ; | ||
| Oracle | N/A | Oracle Map Viewer versions 10.1.3.1, 11.1.1.5 et 11.1.1.6 ; | ||
| Oracle | N/A | Oracle Clinical Remote Data Capture Option versions 4.6, 4.6.2 et 4.6.3 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2 versions 11.2.0.2 et 11.2.0.3 ; | ||
| Oracle | N/A | Enterprise Manager Grid Control 10g Release 1 version 10.2.0.5 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools versions 8.50, 8.51 et 8.52 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i version 11.5.10.2 ; | ||
| Oracle | N/A | Hyperion BI+ version 11.1.1.x ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1 versions 11.1.1.5 et 11.1.1.6 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1 version 11.1.0.7 ; | ||
| Oracle | MySQL | Oracle MySQL Server versions 5.1 et 5.5. |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle E-Business Suite Release 12 versions 12.0.4, 12.0.6, 12.1.1, 12.1.2 et 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Identity Management 10g version 10.1.4.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3 version 10.1.3.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4 et 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Siebel CRM versions 8.1.1 et 8.2.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HRMS versions 9.0 et 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Transportation Management versions 5.5.06, 6.0, 6.1 et 6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle JRockit versions R28.2.3 et ant\u00e9rieures, R27.7.2 et ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Grid Control 11g Release 1 version 11.1.0.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Secure Backup versions 10.3.0.3 et 10.4.0.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle AutoVue versions 20.0.2 et 20.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology versions 8.3.5 et 8.3.7;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Plugin pour Database 12c Release 1 versions 12.1.0.1 et 12.1.0.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 2 version 11.1.2.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Map Viewer versions 10.1.3.1, 11.1.1.5 et 11.1.1.6 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Clinical Remote Data Capture Option versions 4.6, 4.6.2 et 4.6.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2 versions 11.2.0.2 et 11.2.0.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Grid Control 10g Release 1 version 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools versions 8.50, 8.51 et 8.52 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Hyperion BI+ version 11.1.1.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1 versions 11.1.1.5 et 11.1.1.6 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1 version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle MySQL Server versions 5.1 et 5.5.",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-3118",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3118"
},
{
"name": "CVE-2012-1770",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1770"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2012-1773",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1773"
},
{
"name": "CVE-2012-3124",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3124"
},
{
"name": "CVE-2012-1735",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1735"
},
{
"name": "CVE-2012-3110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3110"
},
{
"name": "CVE-2012-1736",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1736"
},
{
"name": "CVE-2012-1759",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1759"
},
{
"name": "CVE-2012-1767",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1767"
},
{
"name": "CVE-2012-1766",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1766"
},
{
"name": "CVE-2012-1754",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1754"
},
{
"name": "CVE-2012-3114",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3114"
},
{
"name": "CVE-2012-1730",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1730"
},
{
"name": "CVE-2012-1739",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1739"
},
{
"name": "CVE-2012-1765",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1765"
},
{
"name": "CVE-2012-1727",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1727"
},
{
"name": "CVE-2012-3115",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3115"
},
{
"name": "CVE-2012-3113",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3113"
},
{
"name": "CVE-2012-1740",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1740"
},
{
"name": "CVE-2012-3121",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3121"
},
{
"name": "CVE-2012-1689",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1689"
},
{
"name": "CVE-2012-1769",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1769"
},
{
"name": "CVE-2012-1768",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1768"
},
{
"name": "CVE-2012-1742",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1742"
},
{
"name": "CVE-2012-1762",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1762"
},
{
"name": "CVE-2012-3130",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3130"
},
{
"name": "CVE-2012-1732",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1732"
},
{
"name": "CVE-2012-3134",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3134"
},
{
"name": "CVE-2012-3126",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3126"
},
{
"name": "CVE-2012-1747",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1747"
},
{
"name": "CVE-2012-1733",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1733"
},
{
"name": "CVE-2012-3117",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3117"
},
{
"name": "CVE-2012-1744",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1744"
},
{
"name": "CVE-2012-1760",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1760"
},
{
"name": "CVE-2012-1772",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1772"
},
{
"name": "CVE-2012-3106",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3106"
},
{
"name": "CVE-2011-3562",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3562"
},
{
"name": "CVE-2012-3128",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3128"
},
{
"name": "CVE-2012-1715",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1715"
},
{
"name": "CVE-2012-3135",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3135"
},
{
"name": "CVE-2012-1728",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1728"
},
{
"name": "CVE-2012-1757",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1757"
},
{
"name": "CVE-2012-1749",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1749"
},
{
"name": "CVE-2012-0563",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0563"
},
{
"name": "CVE-2012-1748",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1748"
},
{
"name": "CVE-2012-1687",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1687"
},
{
"name": "CVE-2012-1758",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1758"
},
{
"name": "CVE-2012-3112",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3112"
},
{
"name": "CVE-2012-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1741"
},
{
"name": "CVE-2012-3109",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3109"
},
{
"name": "CVE-2012-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1752"
},
{
"name": "CVE-2012-1729",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1729"
},
{
"name": "CVE-2012-1771",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1771"
},
{
"name": "CVE-2012-3131",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3131"
},
{
"name": "CVE-2012-0540",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0540"
},
{
"name": "CVE-2012-1761",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1761"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2012-1738",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1738"
},
{
"name": "CVE-2012-3125",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3125"
},
{
"name": "CVE-2008-4609",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4609"
},
{
"name": "CVE-2012-1756",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1756"
},
{
"name": "CVE-2012-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1737"
},
{
"name": "CVE-2012-1764",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1764"
},
{
"name": "CVE-2012-3111",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3111"
},
{
"name": "CVE-2012-3107",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3107"
},
{
"name": "CVE-2012-1753",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1753"
},
{
"name": "CVE-2012-3116",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3116"
},
{
"name": "CVE-2011-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4358"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2012-1734",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1734"
},
{
"name": "CVE-2012-1745",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1745"
},
{
"name": "CVE-2001-0323",
"url": "https://www.cve.org/CVERecord?id=CVE-2001-0323"
},
{
"name": "CVE-2011-4885",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
},
{
"name": "CVE-2011-2699",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2699"
},
{
"name": "CVE-2012-3120",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3120"
},
{
"name": "CVE-2012-3108",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3108"
},
{
"name": "CVE-2012-1750",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1750"
},
{
"name": "CVE-2012-3127",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3127"
},
{
"name": "CVE-2012-1746",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1746"
},
{
"name": "CVE-2012-3122",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3122"
},
{
"name": "CVE-2012-3119",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3119"
},
{
"name": "CVE-2012-3129",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3129"
},
{
"name": "CVE-2012-3123",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3123"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2012-1743",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1743"
},
{
"name": "CVE-2012-1731",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1731"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujul2012-392727 du 17 juillet 2012 :",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
}
],
"reference": "CERTA-2012-AVI-393",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-07-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Soixante-dix sept vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits\n\u003cspan class=\"textit\"\u003eOracle\u003c/span\u003e. Elles concernent de nombreux\ncomposants et peuvent pour certaines \u00eatre exploit\u00e9es \u00e0 distance. Le\nCERTA recommande de mettre \u00e0 jour vos produits \u003cspan\nclass=\"textit\"\u003eOracle\u003c/span\u003e d\u00e8s que possible.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujul2012-392727 du 17 juillet 2012",
"url": null
}
]
}
CERTA-2011-AVI-494
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans Hitachi Web Server, qui peut être exploitée pour provoquer un déni de service à distance.
Description
Une vulnérabilité a été corrigée dans Hitachi Web Server. L'envoi par un attaquant distant de requêtes http avec un en-tête spécialement conçu pourrait provoquer une saturation de la mémoire du serveur, et donc un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Hitachi Web server pour Windows, HP-UX, AIX, Solaris et Linux versions 3.x et 4.x.",
"product": {
"name": "Web",
"vendor": {
"name": "Centreon",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Hitachi Web Server. L\u0027envoi par un\nattaquant distant de requ\u00eates http avec un en-t\u00eate sp\u00e9cialement con\u00e7u\npourrait provoquer une saturation de la m\u00e9moire du serveur, et donc un\nd\u00e9ni de service.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2011-AVI-494",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-06T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Hitachi Web Server, qui peut \u00eatre\nexploit\u00e9e pour provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Hitachi Web Serveur",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Hitachi HS11-019 du 05 septembre 2011",
"url": "http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-019/index.html"
}
]
}
CERTA-2011-AVI-618
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités permettant à un utilisateur malintentionné de provoquer un déni de service à distance ont été découvertes dans HP OpenView Network Node Manager.
Description
Plusieurs vulnérabilités ont été découvertes dans HP OpenView Network Node Manager. Elles permettent à une personne malintentionnée de causer un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP OpenView Network Node Manager en version 7.53 pour système HP-UX, Linux et Solaris.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eHP OpenView Network Node Manager en version 7.53 pour syst\u00e8me HP-UX, Linux et Solaris.\u003c/p\u003e",
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans HP OpenView Network\nNode Manager. Elles permettent \u00e0 une personne malintentionn\u00e9e de causer\nun d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
}
],
"links": [],
"reference": "CERTA-2011-AVI-618",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-11-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s permettant \u00e0 un utilisateur malintentionn\u00e9 de\nprovoquer un d\u00e9ni de service \u00e0 distance ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eHP OpenView Network Node Manager\u003c/span\u003e.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans HP OpenView Network Node Manager",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03011498 du 03 novembre 2011",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03011498"
}
]
}
CERTA-2012-AVI-218
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans HP System Management Homepage. Leur exploitation permet, entre autres, d'exécuter du code arbitraire à distance et de réaliser des dénis de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP System Management Homepage versions antérieures à 7.0.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eHP System Management Homepage\u003c/SPAN\u003e versions ant\u00e9rieures \u00e0 7.0.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2202",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2202"
},
{
"name": "CVE-2011-0195",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0195"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-2483",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2483"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2011-3210",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3210"
},
{
"name": "CVE-2011-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1471"
},
{
"name": "CVE-2010-1623",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1623"
},
{
"name": "CVE-2011-3182",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3182"
},
{
"name": "CVE-2010-0734",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0734"
},
{
"name": "CVE-2010-2791",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2791"
},
{
"name": "CVE-2011-3268",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3268"
},
{
"name": "CVE-2012-0135",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0135"
},
{
"name": "CVE-2011-1153",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1153"
},
{
"name": "CVE-2010-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4645"
},
{
"name": "CVE-2010-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2068"
},
{
"name": "CVE-2010-1452",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1452"
},
{
"name": "CVE-2011-3267",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3267"
},
{
"name": "CVE-2010-4409",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4409"
},
{
"name": "CVE-2011-1148",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1148"
},
{
"name": "CVE-2011-1467",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1467"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2012-1993",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1993"
},
{
"name": "CVE-2011-2192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2192"
},
{
"name": "CVE-2011-3207",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3207"
},
{
"name": "CVE-2011-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1470"
},
{
"name": "CVE-2011-1464",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1464"
},
{
"name": "CVE-2011-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3639"
},
{
"name": "CVE-2009-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0037"
},
{
"name": "CVE-2010-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3436"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2011-1945",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1945"
},
{
"name": "CVE-2011-1928",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1928"
},
{
"name": "CVE-2011-3846",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3846"
},
{
"name": "CVE-2011-0014",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0014"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2011-1468",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1468"
},
{
"name": "CVE-2011-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1938"
},
{
"name": "CVE-2011-3189",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3189"
}
],
"links": [],
"reference": "CERTA-2012-AVI-218",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-04-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eHP System Management Homepage\u003c/span\u003e. Leur exploitation\npermet, entre autres, d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance et de\nr\u00e9aliser des d\u00e9nis de service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP System Management Homepage",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03280632 du 16 avril 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03280632"
}
]
}
CERTA-2012-AVI-713
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans Avaya Experience Portal. Elle permet à un attaquant de provoquer un déni de service au moyen de requêtes HTTP spécialement conçues. La vulnérabilité concerne le composant Apache HTTP Server.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Avaya Experience Portal versions antérieures à 6.0 SP1
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eAvaya Experience Portal versions ant\u00e9rieures \u00e0 6.0 SP1\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2012-AVI-713",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-12-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans \u003cspan class=\"textit\"\u003eAvaya\nExperience Portal\u003c/span\u003e. Elle permet \u00e0 un attaquant de provoquer un\nd\u00e9ni de service au moyen de requ\u00eates HTTP sp\u00e9cialement con\u00e7ues. La\nvuln\u00e9rabilit\u00e9 concerne le composant \u003cspan class=\"textit\"\u003eApache HTTP\nServer\u003c/span\u003e.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Avaya Experience Portal",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ASA-2011-281 du 21 septembre 2011",
"url": "https://downloads.avaya.com/css/P8/documents/100148618"
}
]
}
CERTA-2012-AVI-393
Vulnerability from certfr_avis - Published: - Updated:
Soixante-dix sept vulnérabilités ont été corrigées dans les produits Oracle. Elles concernent de nombreux composants et peuvent pour certaines être exploitées à distance. Le CERTA recommande de mettre à jour vos produits Oracle dès que possible.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle E-Business Suite Release 12 versions 12.0.4, 12.0.6, 12.1.1, 12.1.2 et 12.1.3 ; | ||
| Oracle | N/A | Oracle Identity Management 10g version 10.1.4.3 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3 version 10.1.3.5 ; | ||
| Oracle | N/A | Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4 et 10.2.0.5 ; | ||
| Oracle | N/A | Oracle Siebel CRM versions 8.1.1 et 8.2.2 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HRMS versions 9.0 et 9.1 ; | ||
| Oracle | N/A | Oracle Transportation Management versions 5.5.06, 6.0, 6.1 et 6.2 ; | ||
| Oracle | N/A | Oracle JRockit versions R28.2.3 et antérieures, R27.7.2 et antérieures ; | ||
| Oracle | N/A | Enterprise Manager Grid Control 11g Release 1 version 11.1.0.1 ; | ||
| Oracle | N/A | Oracle Secure Backup versions 10.3.0.3 et 10.4.0.1 ; | ||
| Oracle | N/A | Oracle AutoVue versions 20.0.2 et 20.1 ; | ||
| Oracle | N/A | Oracle Outside In Technology versions 8.3.5 et 8.3.7; | ||
| Oracle | N/A | Enterprise Manager Plugin pour Database 12c Release 1 versions 12.1.0.1 et 12.1.0.2 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 2 version 11.1.2.0 ; | ||
| Oracle | N/A | Oracle Map Viewer versions 10.1.3.1, 11.1.1.5 et 11.1.1.6 ; | ||
| Oracle | N/A | Oracle Clinical Remote Data Capture Option versions 4.6, 4.6.2 et 4.6.3 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2 versions 11.2.0.2 et 11.2.0.3 ; | ||
| Oracle | N/A | Enterprise Manager Grid Control 10g Release 1 version 10.2.0.5 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools versions 8.50, 8.51 et 8.52 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i version 11.5.10.2 ; | ||
| Oracle | N/A | Hyperion BI+ version 11.1.1.x ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1 versions 11.1.1.5 et 11.1.1.6 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1 version 11.1.0.7 ; | ||
| Oracle | MySQL | Oracle MySQL Server versions 5.1 et 5.5. |
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle E-Business Suite Release 12 versions 12.0.4, 12.0.6, 12.1.1, 12.1.2 et 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Identity Management 10g version 10.1.4.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3 version 10.1.3.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2 versions 10.2.0.3, 10.2.0.4 et 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Siebel CRM versions 8.1.1 et 8.2.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HRMS versions 9.0 et 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Transportation Management versions 5.5.06, 6.0, 6.1 et 6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle JRockit versions R28.2.3 et ant\u00e9rieures, R27.7.2 et ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Grid Control 11g Release 1 version 11.1.0.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Secure Backup versions 10.3.0.3 et 10.4.0.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle AutoVue versions 20.0.2 et 20.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology versions 8.3.5 et 8.3.7;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Plugin pour Database 12c Release 1 versions 12.1.0.1 et 12.1.0.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 2 version 11.1.2.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Map Viewer versions 10.1.3.1, 11.1.1.5 et 11.1.1.6 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Clinical Remote Data Capture Option versions 4.6, 4.6.2 et 4.6.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2 versions 11.2.0.2 et 11.2.0.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Enterprise Manager Grid Control 10g Release 1 version 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools versions 8.50, 8.51 et 8.52 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Hyperion BI+ version 11.1.1.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1 versions 11.1.1.5 et 11.1.1.6 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1 version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle MySQL Server versions 5.1 et 5.5.",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-3118",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3118"
},
{
"name": "CVE-2012-1770",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1770"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2012-1773",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1773"
},
{
"name": "CVE-2012-3124",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3124"
},
{
"name": "CVE-2012-1735",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1735"
},
{
"name": "CVE-2012-3110",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3110"
},
{
"name": "CVE-2012-1736",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1736"
},
{
"name": "CVE-2012-1759",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1759"
},
{
"name": "CVE-2012-1767",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1767"
},
{
"name": "CVE-2012-1766",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1766"
},
{
"name": "CVE-2012-1754",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1754"
},
{
"name": "CVE-2012-3114",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3114"
},
{
"name": "CVE-2012-1730",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1730"
},
{
"name": "CVE-2012-1739",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1739"
},
{
"name": "CVE-2012-1765",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1765"
},
{
"name": "CVE-2012-1727",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1727"
},
{
"name": "CVE-2012-3115",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3115"
},
{
"name": "CVE-2012-3113",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3113"
},
{
"name": "CVE-2012-1740",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1740"
},
{
"name": "CVE-2012-3121",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3121"
},
{
"name": "CVE-2012-1689",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1689"
},
{
"name": "CVE-2012-1769",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1769"
},
{
"name": "CVE-2012-1768",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1768"
},
{
"name": "CVE-2012-1742",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1742"
},
{
"name": "CVE-2012-1762",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1762"
},
{
"name": "CVE-2012-3130",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3130"
},
{
"name": "CVE-2012-1732",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1732"
},
{
"name": "CVE-2012-3134",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3134"
},
{
"name": "CVE-2012-3126",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3126"
},
{
"name": "CVE-2012-1747",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1747"
},
{
"name": "CVE-2012-1733",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1733"
},
{
"name": "CVE-2012-3117",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3117"
},
{
"name": "CVE-2012-1744",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1744"
},
{
"name": "CVE-2012-1760",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1760"
},
{
"name": "CVE-2012-1772",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1772"
},
{
"name": "CVE-2012-3106",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3106"
},
{
"name": "CVE-2011-3562",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3562"
},
{
"name": "CVE-2012-3128",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3128"
},
{
"name": "CVE-2012-1715",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1715"
},
{
"name": "CVE-2012-3135",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3135"
},
{
"name": "CVE-2012-1728",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1728"
},
{
"name": "CVE-2012-1757",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1757"
},
{
"name": "CVE-2012-1749",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1749"
},
{
"name": "CVE-2012-0563",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0563"
},
{
"name": "CVE-2012-1748",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1748"
},
{
"name": "CVE-2012-1687",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1687"
},
{
"name": "CVE-2012-1758",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1758"
},
{
"name": "CVE-2012-3112",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3112"
},
{
"name": "CVE-2012-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1741"
},
{
"name": "CVE-2012-3109",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3109"
},
{
"name": "CVE-2012-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1752"
},
{
"name": "CVE-2012-1729",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1729"
},
{
"name": "CVE-2012-1771",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1771"
},
{
"name": "CVE-2012-3131",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3131"
},
{
"name": "CVE-2012-0540",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0540"
},
{
"name": "CVE-2012-1761",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1761"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2012-1738",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1738"
},
{
"name": "CVE-2012-3125",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3125"
},
{
"name": "CVE-2008-4609",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4609"
},
{
"name": "CVE-2012-1756",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1756"
},
{
"name": "CVE-2012-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1737"
},
{
"name": "CVE-2012-1764",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1764"
},
{
"name": "CVE-2012-3111",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3111"
},
{
"name": "CVE-2012-3107",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3107"
},
{
"name": "CVE-2012-1753",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1753"
},
{
"name": "CVE-2012-3116",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3116"
},
{
"name": "CVE-2011-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4358"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2012-1734",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1734"
},
{
"name": "CVE-2012-1745",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1745"
},
{
"name": "CVE-2001-0323",
"url": "https://www.cve.org/CVERecord?id=CVE-2001-0323"
},
{
"name": "CVE-2011-4885",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
},
{
"name": "CVE-2011-2699",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2699"
},
{
"name": "CVE-2012-3120",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3120"
},
{
"name": "CVE-2012-3108",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3108"
},
{
"name": "CVE-2012-1750",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1750"
},
{
"name": "CVE-2012-3127",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3127"
},
{
"name": "CVE-2012-1746",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1746"
},
{
"name": "CVE-2012-3122",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3122"
},
{
"name": "CVE-2012-3119",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3119"
},
{
"name": "CVE-2012-3129",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3129"
},
{
"name": "CVE-2012-3123",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3123"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2012-1743",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1743"
},
{
"name": "CVE-2012-1731",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-1731"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujul2012-392727 du 17 juillet 2012 :",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
}
],
"reference": "CERTA-2012-AVI-393",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-07-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Soixante-dix sept vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits\n\u003cspan class=\"textit\"\u003eOracle\u003c/span\u003e. Elles concernent de nombreux\ncomposants et peuvent pour certaines \u00eatre exploit\u00e9es \u00e0 distance. Le\nCERTA recommande de mettre \u00e0 jour vos produits \u003cspan\nclass=\"textit\"\u003eOracle\u003c/span\u003e d\u00e8s que possible.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle cpujul2012-392727 du 17 juillet 2012",
"url": null
}
]
}
CERTA-2011-AVI-618
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités permettant à un utilisateur malintentionné de provoquer un déni de service à distance ont été découvertes dans HP OpenView Network Node Manager.
Description
Plusieurs vulnérabilités ont été découvertes dans HP OpenView Network Node Manager. Elles permettent à une personne malintentionnée de causer un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP OpenView Network Node Manager en version 7.53 pour système HP-UX, Linux et Solaris.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eHP OpenView Network Node Manager en version 7.53 pour syst\u00e8me HP-UX, Linux et Solaris.\u003c/p\u003e",
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans HP OpenView Network\nNode Manager. Elles permettent \u00e0 une personne malintentionn\u00e9e de causer\nun d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
}
],
"links": [],
"reference": "CERTA-2011-AVI-618",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-11-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s permettant \u00e0 un utilisateur malintentionn\u00e9 de\nprovoquer un d\u00e9ni de service \u00e0 distance ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eHP OpenView Network Node Manager\u003c/span\u003e.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans HP OpenView Network Node Manager",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03011498 du 03 novembre 2011",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03011498"
}
]
}
CERTA-2011-AVI-586
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Oracle.
Description
De multiples vulnérabilités ont été corrigées dans les produits Oracle. Elles peuvent notamment être exploitées pour porter atteinte à la confidentialité, l'intégrité ou la disponibilité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | N/A | Oracle Siebel CRM Core and Apps, versions 8.0.0, 8.1.1 ; | ||
| Oracle | N/A | Oracle Sun Product Suite ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 3, version 10.1.3.5.0 ; | ||
| Oracle | N/A | Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.0.0.2, 6.0.0.3, 6.0.0.4 ; | ||
| Oracle | N/A | Oracle Outside In Technology, versions 8.3.5, 8.3.7 ; | ||
| Oracle | N/A | Oracle Database 11g Release 2, version 11.2.0.2 ; | ||
| Oracle | N/A | Oracle Application Server 10g Release 2, version 10.1.2.3.0 ; | ||
| Oracle | N/A | Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 11i, version 11.5.10.2 ; | ||
| Oracle | N/A | Oracle Clinical, Remote Data Capture, versions 4.6, 4.6.2 ; | ||
| Oracle | Weblogic | Oracle WebLogic Server, versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ; | ||
| Oracle | N/A | Oracle Linux 5 ; | ||
| Oracle | N/A | Oracle Database 10g Release 1, version 10.1.0.5 ; | ||
| Oracle | N/A | Oracle Business Intelligence Enterprise Edition, versions 11.1.1.3, 11.1.1.5 ; | ||
| Oracle | N/A | Oracle Thesaurus Management System, versions 4.6.1, 4.6.2 ; | ||
| Oracle | N/A | Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.2, 12.1.3 ; | ||
| Oracle | N/A | Oracle Sun Ray ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ; | ||
| Oracle | Weblogic | Oracle WebLogic Portal, versions 9.2.3.0, 10.0.1.0, 10.2.1.0, 10.3.2.0 ; | ||
| Oracle | N/A | Oracle Database 11g Release 1, version 11.1.0.7 ; | ||
| Oracle | N/A | Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ; | ||
| Oracle | N/A | Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3 ; | ||
| Oracle | PeopleSoft | Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1 ; |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Oracle Siebel CRM Core and Apps, versions 8.0.0, 8.1.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Product Suite ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.0.0.2, 6.0.0.3, 6.0.0.4 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Outside In Technology, versions 8.3.5, 8.3.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 2, version 11.2.0.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 11i, version 11.5.10.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Clinical, Remote Data Capture, versions 4.6, 4.6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Server, versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5) ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Linux 5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 10g Release 1, version 10.1.0.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Business Intelligence Enterprise Edition, versions 11.1.1.3, 11.1.1.5 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Thesaurus Management System, versions 4.6.1, 4.6.2 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.2, 12.1.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Sun Ray ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle WebLogic Portal, versions 9.2.3.0, 10.0.1.0, 10.2.1.0, 10.3.2.0 ;",
"product": {
"name": "Weblogic",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Database 11g Release 1, version 11.1.0.7 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1 ;",
"product": {
"name": "PeopleSoft",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits Oracle.\nElles peuvent notamment \u00eatre exploit\u00e9es pour porter atteinte \u00e0 la\nconfidentialit\u00e9, l\u0027int\u00e9grit\u00e9 ou la disponibilit\u00e9 des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2306",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2306"
},
{
"name": "CVE-2011-3532",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3532"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3536",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3536"
},
{
"name": "CVE-2011-2292",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2292"
},
{
"name": "CVE-2011-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2312"
},
{
"name": "CVE-2011-2301",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2301"
},
{
"name": "CVE-2011-3522",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3522"
},
{
"name": "CVE-2011-2313",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2313"
},
{
"name": "CVE-2011-3517",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3517"
},
{
"name": "CVE-2011-2255",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2255"
},
{
"name": "CVE-2011-2316",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2316"
},
{
"name": "CVE-2011-3515",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3515"
},
{
"name": "CVE-2011-3511",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3511"
},
{
"name": "CVE-2011-3507",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3507"
},
{
"name": "CVE-2011-3519",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3519"
},
{
"name": "CVE-2011-3513",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3513"
},
{
"name": "CVE-2011-3535",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3535"
},
{
"name": "CVE-2011-2320",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2320"
},
{
"name": "CVE-2011-2308",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2308"
},
{
"name": "CVE-2011-3510",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3510"
},
{
"name": "CVE-2011-2311",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2311"
},
{
"name": "CVE-2011-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3518"
},
{
"name": "CVE-2011-3542",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3542"
},
{
"name": "CVE-2011-2304",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2304"
},
{
"name": "CVE-2011-3508",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3508"
},
{
"name": "CVE-2011-3534",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3534"
},
{
"name": "CVE-2011-2309",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2309"
},
{
"name": "CVE-2011-3530",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3530"
},
{
"name": "CVE-2011-3559",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3559"
},
{
"name": "CVE-2011-3512",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3512"
},
{
"name": "CVE-2011-2302",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2302"
},
{
"name": "CVE-2011-3528",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3528"
},
{
"name": "CVE-2011-2315",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2315"
},
{
"name": "CVE-2011-3506",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3506"
},
{
"name": "CVE-2011-3523",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3523"
},
{
"name": "CVE-2011-2323",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2323"
},
{
"name": "CVE-2011-3526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3526"
},
{
"name": "CVE-2011-2310",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2310"
},
{
"name": "CVE-2011-2319",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2319"
},
{
"name": "CVE-2011-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3520"
},
{
"name": "CVE-2011-3533",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3533"
},
{
"name": "CVE-2011-2303",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2303"
},
{
"name": "CVE-2011-3543",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3543"
},
{
"name": "CVE-2011-3525",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3525"
},
{
"name": "CVE-2011-2322",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2322"
},
{
"name": "CVE-2011-2314",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2314"
},
{
"name": "CVE-2011-2237",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2237"
},
{
"name": "CVE-2011-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3538"
},
{
"name": "CVE-2011-3527",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3527"
},
{
"name": "CVE-2011-2327",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2327"
},
{
"name": "CVE-2011-3537",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3537"
},
{
"name": "CVE-2011-3539",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3539"
},
{
"name": "CVE-2011-2318",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2318"
},
{
"name": "CVE-2011-2286",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2286"
},
{
"name": "CVE-2011-3541",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3541"
},
{
"name": "CVE-2011-3529",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3529"
}
],
"links": [],
"reference": "CERTA-2011-AVI-586",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits Oracle.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Oracle d\u0027octobre 2011",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
}
]
}
CERTA-2011-AVI-494
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été corrigée dans Hitachi Web Server, qui peut être exploitée pour provoquer un déni de service à distance.
Description
Une vulnérabilité a été corrigée dans Hitachi Web Server. L'envoi par un attaquant distant de requêtes http avec un en-tête spécialement conçu pourrait provoquer une saturation de la mémoire du serveur, et donc un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Hitachi Web server pour Windows, HP-UX, AIX, Solaris et Linux versions 3.x et 4.x.",
"product": {
"name": "Web",
"vendor": {
"name": "Centreon",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Hitachi Web Server. L\u0027envoi par un\nattaquant distant de requ\u00eates http avec un en-t\u00eate sp\u00e9cialement con\u00e7u\npourrait provoquer une saturation de la m\u00e9moire du serveur, et donc un\nd\u00e9ni de service.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [],
"reference": "CERTA-2011-AVI-494",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-06T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Hitachi Web Server, qui peut \u00eatre\nexploit\u00e9e pour provoquer un d\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Hitachi Web Serveur",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Hitachi HS11-019 du 05 septembre 2011",
"url": "http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-019/index.html"
}
]
}
CERTA-2012-AVI-023
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités découvertes dans les produits IBM ont été corrigées par l'éditeur.
Description
Plusieurs vulnérabilités dans les produits IBM peuvent être exploitées par une personne malintentionnée afin de contourner la politique de sécurité, d'injecter du code indirect à distance, de réaliser un déni de service distant, d'élever ses privilèges ou encore d'exécuter du code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Rational License Key Server 8.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 6.1.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 7.0.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM HTTP Server 7.0.x.",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM WebSphere Application Server 8.0.x ;",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits IBM peuvent \u00eatre exploit\u00e9es\npar une personne malintentionn\u00e9e afin de contourner la politique de\ns\u00e9curit\u00e9, d\u0027injecter du code indirect \u00e0 distance, de r\u00e9aliser un d\u00e9ni de\nservice distant, d\u0027\u00e9lever ses privil\u00e8ges ou encore d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2009-1890",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1890"
},
{
"name": "CVE-2011-3348",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3348"
},
{
"name": "CVE-2009-3560",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3560"
},
{
"name": "CVE-2011-1389",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1389"
},
{
"name": "CVE-2010-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0434"
},
{
"name": "CVE-2010-1623",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1623"
},
{
"name": "CVE-2009-3094",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3094"
},
{
"name": "CVE-2009-3095",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3095"
},
{
"name": "CVE-2010-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2068"
},
{
"name": "CVE-2010-1452",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1452"
},
{
"name": "CVE-2009-3555",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3555"
},
{
"name": "CVE-2009-1891",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1891"
},
{
"name": "CVE-2009-0023",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0023"
},
{
"name": "CVE-2009-1956",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1956"
},
{
"name": "CVE-2009-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2412"
},
{
"name": "CVE-2011-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3607"
},
{
"name": "CVE-2009-1195",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1195"
},
{
"name": "CVE-2010-0408",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0408"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2011-3639",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3639"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2009-3720",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3720"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2009-1955",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1955"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg21577760 du 10 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21577760"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg27014506 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg27014506"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM54061 du 12 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM54061"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM48384 du 21 septembre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM48384"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg24031821 du 17 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24031821"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM50426 du 19 octobre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM50426"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM45731 du 12 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM45731"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg227022958 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg227022958"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg1PM47852 du 14 septembre 2011 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM47852"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM swg227014463 du 16 janvier 2012 :",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg227014463"
}
],
"reference": "CERTA-2012-AVI-023",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-01-18T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans les produits IBM ont \u00e9t\u00e9\ncorrig\u00e9es par l\u0027\u00e9diteur.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": []
}
CERTA-2012-AVI-566
Vulnerability from certfr_avis - Published: - Updated:
Des vulnérabilités ont été corrigées dans HP Secure Web Server. La plus critique d'entre elles permet à un attaquant d'accéder à du contenu non autorisé.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
HP Secure Web Server (SWS) pour OpenVMS version 2.2 et versions antérieures.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eHP Secure Web Server (SWS) pour OpenVMS version 2.2 et versions ant\u00e9rieures.\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2012-0031",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0031"
},
{
"name": "CVE-2011-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3607"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2011-4317",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
},
{
"name": "CVE-2011-1928",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1928"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
}
],
"links": [],
"reference": "CERTA-2012-AVI-566",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-10-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "Des vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eHP Secure\nWeb Server\u003c/span\u003e. La plus critique d\u0027entre elles permet \u00e0 un attaquant\nd\u0027acc\u00e9der \u00e0 du contenu non autoris\u00e9.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans HP Secure Web Server",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03517954 du 10 octobre 2012",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03517954"
}
]
}
CERTA-2011-AVI-490
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité présente dans Apache httpd permet à un utilisateur distant malintentionné de provoquer un déni de service.
Description
Une vulnérabilité relative à la gestion de certains paramètres d'en-tête HTTP est présente dans le serveur web Apache httpd. Elle permet à un utilisateur distant malintentionné de provoquer une consommation mémoire excessive du serveur au moyen d'une requête HTTP spécialement conçue.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Apache httpd versions 1.3.42 et ant\u00e9rieures.",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
},
{
"description": "Apache httpd versions 2.2.19 et ant\u00e9rieures;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
},
{
"description": "Apache httpd versions 2.0.64 et ant\u00e9rieures;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apache",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 relative \u00e0 la gestion de certains param\u00e8tres d\u0027en-t\u00eate\nHTTP est pr\u00e9sente dans le serveur web Apache httpd. Elle permet \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer une consommation m\u00e9moire\nexcessive du serveur au moyen d\u0027une requ\u00eate HTTP sp\u00e9cialement con\u00e7ue.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 HP c02997184 du 08 septembre 2011 :",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02997184"
},
{
"title": "Bulletins de s\u00e9curit\u00e9 RedHat RHSA-2011:1245-1 31 ao\u00fbt 2011 :",
"url": "http://rhn.redhat.com/errata/RHSA-2011-1245.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 2298 du 29 ao\u00fbt 2011 :",
"url": "http://www.debian.org/security/2011/dsa-2298"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20110830-apache du 09 septembre 2011 :",
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20110830-apache.shtml"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 IBM ISS Xforce 69396 du 23 ao\u00fbt 2011 :",
"url": "http://xforce.iss.net/xforce/xfdb/69396"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2011:130 du 04 septembre 2011 :",
"url": "http://www.mandriva.com/fr/support/security/advisories/?dis=2010\u0026name=MDVSA-2011:130"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-1199-1 du 01 septembre 2011 :",
"url": "http://www.ubuntulinux.org/usn/usn-1199-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Novell (Suse) CVE-2011-3192 du 06 septembre 2011 :",
"url": "http://support.novell.com/security/cve/CVE-2011-3192.html"
},
{
"title": "Alerte de s\u00e9curit\u00e9 Oracle du 15 septembre 2011 :",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Hitachi HS11-019 du 05 septembre 2011 :",
"url": "http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS11-019/index.html"
}
],
"reference": "CERTA-2011-AVI-490",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-01T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences aux bulletins Cisco, Hitachi, HP, Mandriva, Novell (Suse), RedHat et Ubuntu.",
"revision_date": "2011-09-13T00:00:00.000000"
},
{
"description": "ajout de la r\u00e9f\u00e9rence au bulletin Oracle.",
"revision_date": "2011-11-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans \u003cspan class=\"textit\"\u003eApache httpd\u003c/span\u003e\npermet \u00e0 un utilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de\nservice.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Apache httpd",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apache du 30 ao\u00fbt 2011",
"url": "http://httpd.apache.org/security/vulnerabilities_22.html#2.2.20"
}
]
}
CERTFR-2014-AVI-357
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans les produits Juniper. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | NSM3000 | ||
| ESET | Security | Security Threat Response Manager | ||
| Juniper Networks | Secure Analytics | Juniper Secure Analytics | ||
| N/A | N/A | NSMExpress |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "NSM3000",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Security Threat Response Manager",
"product": {
"name": "Security",
"vendor": {
"name": "ESET",
"scada": false
}
}
},
{
"description": "Juniper Secure Analytics",
"product": {
"name": "Secure Analytics",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "NSMExpress",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2012-0053",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0053"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2014-0460",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0460"
},
{
"name": "CVE-2014-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0063"
},
{
"name": "CVE-2013-4286",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4286"
},
{
"name": "CVE-2013-4002",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4002"
},
{
"name": "CVE-2013-5823",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5823"
},
{
"name": "CVE-2013-4590",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4590"
},
{
"name": "CVE-2012-5081",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5081"
},
{
"name": "CVE-2014-0061",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0061"
},
{
"name": "CVE-2013-2457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2457"
},
{
"name": "CVE-2013-5803",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5803"
},
{
"name": "CVE-2012-0031",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0031"
},
{
"name": "CVE-2014-0114",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0114"
},
{
"name": "CVE-2014-0067",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0067"
},
{
"name": "CVE-2014-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0411"
},
{
"name": "CVE-2013-2461",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2461"
},
{
"name": "CVE-2013-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0443"
},
{
"name": "CVE-2014-0098",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0098"
},
{
"name": "CVE-2014-0453",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0453"
},
{
"name": "CVE-2013-0169",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0169"
},
{
"name": "CVE-2013-5802",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5802"
},
{
"name": "CVE-2014-0423",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0423"
},
{
"name": "CVE-2014-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0224"
},
{
"name": "CVE-2013-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0440"
},
{
"name": "CVE-2011-3368",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3368"
},
{
"name": "CVE-2013-4322",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4322"
},
{
"name": "CVE-2013-5780",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5780"
},
{
"name": "CVE-2014-0064",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0064"
},
{
"name": "CVE-2014-0065",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0065"
},
{
"name": "CVE-2013-2451",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2451"
},
{
"name": "CVE-2014-0107",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0107"
},
{
"name": "CVE-2013-2407",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2407"
},
{
"name": "CVE-2014-0033",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0033"
},
{
"name": "CVE-2014-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0062"
},
{
"name": "CVE-2014-0060",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0060"
},
{
"name": "CVE-2010-5298",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-5298"
},
{
"name": "CVE-2013-5825",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5825"
},
{
"name": "CVE-2013-1537",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1537"
},
{
"name": "CVE-2014-0198",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0198"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2013-5830",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-5830"
},
{
"name": "CVE-2014-0066",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0066"
}
],
"links": [],
"reference": "CERTFR-2014-AVI-357",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-08-14T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits \u003cspan\nclass=\"textit\"\u003eJuniper\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10642 du 13 ao\u00fbt 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10642"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA10643 du 13 ao\u00fbt 2014",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10643"
}
]
}
CERTA-2011-AVI-564
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités présentes dans Mac OS X ont été corrigées.
Description
De multiples vulnérabilités découvertes dans Mac OS X permettent à une personne malveillante d'exécuter du code arbitraire à distance avec potentiellement des privilèges élevés, de provoquer un déni de service, de contourner la politique de sécurité du système, de porter atteinte à la confidentialité et à l'intégrité des données ou encore de réaliser une injection de code indirecte.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Mac OS X v10.6.8 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Lion Server v10.7 et v10.7.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server v10.7 et v10.7.1.",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server v10.6.8 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans Mac OS X permettent \u00e0 une\npersonne malveillante d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance avec\npotentiellement des privil\u00e8ges \u00e9lev\u00e9s, de provoquer un d\u00e9ni de service,\nde contourner la politique de s\u00e9curit\u00e9 du syst\u00e8me, de porter atteinte \u00e0\nla confidentialit\u00e9 et \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es ou encore de r\u00e9aliser\nune injection de code indirecte.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3216",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3216"
},
{
"name": "CVE-2011-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3436"
},
{
"name": "CVE-2010-1634",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1634"
},
{
"name": "CVE-2011-3214",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3214"
},
{
"name": "CVE-2011-0187",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0187"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3228",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3228"
},
{
"name": "CVE-2011-0421",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0421"
},
{
"name": "CVE-2011-0259",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0259"
},
{
"name": "CVE-2011-3221",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3221"
},
{
"name": "CVE-2010-4172",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4172"
},
{
"name": "CVE-2011-3217",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3217"
},
{
"name": "CVE-2011-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3219"
},
{
"name": "CVE-2011-0534",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0534"
},
{
"name": "CVE-2011-0230",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0230"
},
{
"name": "CVE-2011-0229",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0229"
},
{
"name": "CVE-2011-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1471"
},
{
"name": "CVE-2011-3222",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3222"
},
{
"name": "CVE-2011-1466",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1466"
},
{
"name": "CVE-2011-0226",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0226"
},
{
"name": "CVE-2011-0013",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0013"
},
{
"name": "CVE-2011-0231",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0231"
},
{
"name": "CVE-2011-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3213"
},
{
"name": "CVE-2009-4022",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4022"
},
{
"name": "CVE-2011-1153",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1153"
},
{
"name": "CVE-2011-3218",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3218"
},
{
"name": "CVE-2011-2692",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2692"
},
{
"name": "CVE-2010-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4645"
},
{
"name": "CVE-2011-0249",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0249"
},
{
"name": "CVE-2011-3212",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3212"
},
{
"name": "CVE-2011-0250",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0250"
},
{
"name": "CVE-2011-1092",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1092"
},
{
"name": "CVE-2011-3227",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3227"
},
{
"name": "CVE-2011-1469",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1469"
},
{
"name": "CVE-2010-2227",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2227"
},
{
"name": "CVE-2011-1910",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1910"
},
{
"name": "CVE-2011-3220",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3220"
},
{
"name": "CVE-2011-0708",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0708"
},
{
"name": "CVE-2010-3614",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3614"
},
{
"name": "CVE-2011-3224",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3224"
},
{
"name": "CVE-2011-3226",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3226"
},
{
"name": "CVE-2011-0260",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0260"
},
{
"name": "CVE-2011-2690",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2690"
},
{
"name": "CVE-2011-3215",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3215"
},
{
"name": "CVE-2010-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3613"
},
{
"name": "CVE-2011-1521",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1521"
},
{
"name": "CVE-2011-1467",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1467"
},
{
"name": "CVE-2011-1755",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1755"
},
{
"name": "CVE-2011-3246",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3246"
},
{
"name": "CVE-2011-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3435"
},
{
"name": "CVE-2011-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2691"
},
{
"name": "CVE-2011-3437",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3437"
},
{
"name": "CVE-2011-0251",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0251"
},
{
"name": "CVE-2011-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1470"
},
{
"name": "CVE-2011-3225",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3225"
},
{
"name": "CVE-2011-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0411"
},
{
"name": "CVE-2010-3718",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3718"
},
{
"name": "CVE-2011-2464",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2464"
},
{
"name": "CVE-2010-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3436"
},
{
"name": "CVE-2010-0097",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0097"
},
{
"name": "CVE-2011-0707",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0707"
},
{
"name": "CVE-2011-0252",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0252"
},
{
"name": "CVE-2011-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0224"
},
{
"name": "CVE-2010-2089",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2089"
},
{
"name": "CVE-2011-0420",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0420"
},
{
"name": "CVE-2010-1157",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1157"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2011-1468",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1468"
},
{
"name": "CVE-2011-3223",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3223"
},
{
"name": "CVE-2011-0185",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0185"
}
],
"links": [
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3436 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3436"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0708 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0708"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1467 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1467"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1910 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1910"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3217 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3217"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1153 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1153"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3220 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3220"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3614 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3614"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0420 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0420"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0411 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0411"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0224 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0224"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3613 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3613"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3225 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3225"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0249 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0249"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3227 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3227"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1521 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1521"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0185 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0185"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0252 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0252"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0226 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0226"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-4645 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-4645"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3213 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3213"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3221 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3221"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1471 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1471"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3435 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3435"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3218 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3218"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0013 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0013"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-1634 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-1634"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0250 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0250"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3224 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3224"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0259 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0259"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2690 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2690"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3226 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3226"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3216 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3216"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3212 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3212"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-2089 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-2089"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3718 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3718"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0260 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0260"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3214 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3214"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-1157 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-1157"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0707 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0707"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3223 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3223"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3246 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3246"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-2227 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-2227"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-4172 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-4172"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3436 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3436"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2691 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2691"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3437 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3437"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2009-4022 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2009-4022"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0187 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0187"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3192 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3192"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1755 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1755"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-0097 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-0097"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0419 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0419"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1466 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1466"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0421 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0421"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0251 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0251"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3219 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3219"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0229 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0229"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3222 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3222"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0534 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0534"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3228 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3228"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3215 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3215"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1092 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1092"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0230 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0230"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1470 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1470"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0231 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0231"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2692 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2692"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1468 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1468"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2464 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2464"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1469 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1469"
}
],
"reference": "CERTA-2011-AVI-564",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans Mac OS X ont \u00e9t\u00e9 corrig\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Mac OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT5002 du 12 octobre 2011",
"url": "http://docs.info.apple.com/article.html?artnum=HT5002"
}
]
}
CERTA-2011-AVI-564
Vulnerability from certfr_avis - Published: - Updated:
Plusieurs vulnérabilités présentes dans Mac OS X ont été corrigées.
Description
De multiples vulnérabilités découvertes dans Mac OS X permettent à une personne malveillante d'exécuter du code arbitraire à distance avec potentiellement des privilèges élevés, de provoquer un déni de service, de contourner la politique de sécurité du système, de porter atteinte à la confidentialité et à l'intégrité des données ou encore de réaliser une injection de code indirecte.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Mac OS X v10.6.8 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Lion Server v10.7 et v10.7.1 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server v10.7 et v10.7.1.",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server v10.6.8 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans Mac OS X permettent \u00e0 une\npersonne malveillante d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance avec\npotentiellement des privil\u00e8ges \u00e9lev\u00e9s, de provoquer un d\u00e9ni de service,\nde contourner la politique de s\u00e9curit\u00e9 du syst\u00e8me, de porter atteinte \u00e0\nla confidentialit\u00e9 et \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es ou encore de r\u00e9aliser\nune injection de code indirecte.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3216",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3216"
},
{
"name": "CVE-2011-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3436"
},
{
"name": "CVE-2010-1634",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1634"
},
{
"name": "CVE-2011-3214",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3214"
},
{
"name": "CVE-2011-0187",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0187"
},
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"name": "CVE-2011-3228",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3228"
},
{
"name": "CVE-2011-0421",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0421"
},
{
"name": "CVE-2011-0259",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0259"
},
{
"name": "CVE-2011-3221",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3221"
},
{
"name": "CVE-2010-4172",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4172"
},
{
"name": "CVE-2011-3217",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3217"
},
{
"name": "CVE-2011-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3219"
},
{
"name": "CVE-2011-0534",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0534"
},
{
"name": "CVE-2011-0230",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0230"
},
{
"name": "CVE-2011-0229",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0229"
},
{
"name": "CVE-2011-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1471"
},
{
"name": "CVE-2011-3222",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3222"
},
{
"name": "CVE-2011-1466",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1466"
},
{
"name": "CVE-2011-0226",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0226"
},
{
"name": "CVE-2011-0013",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0013"
},
{
"name": "CVE-2011-0231",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0231"
},
{
"name": "CVE-2011-3213",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3213"
},
{
"name": "CVE-2009-4022",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4022"
},
{
"name": "CVE-2011-1153",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1153"
},
{
"name": "CVE-2011-3218",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3218"
},
{
"name": "CVE-2011-2692",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2692"
},
{
"name": "CVE-2010-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-4645"
},
{
"name": "CVE-2011-0249",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0249"
},
{
"name": "CVE-2011-3212",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3212"
},
{
"name": "CVE-2011-0250",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0250"
},
{
"name": "CVE-2011-1092",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1092"
},
{
"name": "CVE-2011-3227",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3227"
},
{
"name": "CVE-2011-1469",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1469"
},
{
"name": "CVE-2010-2227",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2227"
},
{
"name": "CVE-2011-1910",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1910"
},
{
"name": "CVE-2011-3220",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3220"
},
{
"name": "CVE-2011-0708",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0708"
},
{
"name": "CVE-2010-3614",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3614"
},
{
"name": "CVE-2011-3224",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3224"
},
{
"name": "CVE-2011-3226",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3226"
},
{
"name": "CVE-2011-0260",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0260"
},
{
"name": "CVE-2011-2690",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2690"
},
{
"name": "CVE-2011-3215",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3215"
},
{
"name": "CVE-2010-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3613"
},
{
"name": "CVE-2011-1521",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1521"
},
{
"name": "CVE-2011-1467",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1467"
},
{
"name": "CVE-2011-1755",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1755"
},
{
"name": "CVE-2011-3246",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3246"
},
{
"name": "CVE-2011-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3435"
},
{
"name": "CVE-2011-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2691"
},
{
"name": "CVE-2011-3437",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3437"
},
{
"name": "CVE-2011-0251",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0251"
},
{
"name": "CVE-2011-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1470"
},
{
"name": "CVE-2011-3225",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3225"
},
{
"name": "CVE-2011-0411",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0411"
},
{
"name": "CVE-2010-3718",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3718"
},
{
"name": "CVE-2011-2464",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2464"
},
{
"name": "CVE-2010-3436",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-3436"
},
{
"name": "CVE-2010-0097",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0097"
},
{
"name": "CVE-2011-0707",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0707"
},
{
"name": "CVE-2011-0252",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0252"
},
{
"name": "CVE-2011-0224",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0224"
},
{
"name": "CVE-2010-2089",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-2089"
},
{
"name": "CVE-2011-0420",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0420"
},
{
"name": "CVE-2010-1157",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1157"
},
{
"name": "CVE-2011-0419",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0419"
},
{
"name": "CVE-2011-1468",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1468"
},
{
"name": "CVE-2011-3223",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3223"
},
{
"name": "CVE-2011-0185",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-0185"
}
],
"links": [
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3436 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3436"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0708 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0708"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1467 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1467"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1910 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1910"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3217 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3217"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1153 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1153"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3220 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3220"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3614 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3614"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0420 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0420"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0411 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0411"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0224 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0224"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3613 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3613"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3225 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3225"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0249 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0249"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3227 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3227"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1521 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1521"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0185 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0185"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0252 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0252"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0226 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0226"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-4645 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-4645"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3213 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3213"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3221 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3221"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1471 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1471"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3435 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3435"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3218 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3218"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0013 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0013"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-1634 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-1634"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0250 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0250"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3224 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3224"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0259 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0259"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2690 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2690"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3226 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3226"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3216 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3216"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3212 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3212"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-2089 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-2089"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-3718 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-3718"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0260 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0260"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3214 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3214"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-1157 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-1157"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0707 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0707"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3223 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3223"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3246 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3246"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-2227 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-2227"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-4172 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-4172"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3436 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3436"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2691 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2691"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3437 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3437"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2009-4022 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2009-4022"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0187 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0187"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3192 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3192"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1755 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1755"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2010-0097 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2010-0097"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0419 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0419"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1466 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1466"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0421 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0421"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0251 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0251"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3219 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3219"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0229 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0229"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3222 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3222"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0534 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0534"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3228 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3228"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-3215 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-3215"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1092 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1092"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0230 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0230"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1470 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1470"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-0231 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-0231"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2692 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2692"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1468 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1468"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-2464 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-2464"
},
{
"title": "R\u00e9f\u00e9rence CVE CVE-2011-1469 :",
"url": "http://cve.mitre.org/cgi-bin/cvename-cgi?name=CVE-2011-1469"
}
],
"reference": "CERTA-2011-AVI-564",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-10-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans Mac OS X ont \u00e9t\u00e9 corrig\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Mac OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT5002 du 12 octobre 2011",
"url": "http://docs.info.apple.com/article.html?artnum=HT5002"
}
]
}
CERTA-2011-AVI-488
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité dans Cisco NX-OS peut être utilisée pour réaliser un déni de service à distance.
Description
Une vulnérabilitié a été corrigée dans Cisco NX-OS. Cette vulnérabilité affecte le serveur httpd Apache. Elle peut être utilisée à l'aide de requêtes HTTP spécialement conçues (utilisation de l'entête range avec des intervalles se chevauchant) pour provoquer un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Cisco | TelePresence VCS | Cisco TelePresence Video Communication Server (Cisco TelePresence VCS) ; | ||
| Cisco | N/A | Cisco Quad ; | ||
| Cisco | N/A | CiscoWorks LAN Management Solution. | ||
| Cisco | N/A | Cisco Mobility Services Engine ; | ||
| Cisco | N/A | Cisco Wireless Control System (WCS) ; | ||
| Cisco | N/A | Cisco Wild Area Application Services (WAAS) Software ; | ||
| Cisco | NX-OS | Cisco MDS 9000 NX-OS versions antérieures à la 4.2 ; | ||
| Cisco | N/A | Cisco Video Surveillance Manager (VSM) ; | ||
| Cisco | N/A | Cisco Network Collector ; | ||
| Cisco | N/A | CiscoWorks Common Services ; | ||
| Cisco | N/A | Cisco SAN-OS 3.x ; | ||
| Cisco | NX-OS | Cisco NX-OS Software pour Cisco Nexus 7000 Series Switches versions antérieures à la 5.1 ; | ||
| Cisco | N/A | Cisco Video Surveillance Operations Manager (VSOM) ; | ||
| Cisco | N/A | Tous les systèmes Cisco CTS TelePresence ; | ||
| Cisco | N/A | Management Center for Cisco Security Agent ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cisco TelePresence Video Communication Server (Cisco TelePresence VCS) ;",
"product": {
"name": "TelePresence VCS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Quad ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "CiscoWorks LAN Management Solution.",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Mobility Services Engine ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Wireless Control System (WCS) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Wild Area Application Services (WAAS) Software ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco MDS 9000 NX-OS versions ant\u00e9rieures \u00e0 la 4.2 ;",
"product": {
"name": "NX-OS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Video Surveillance Manager (VSM) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Network Collector ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "CiscoWorks Common Services ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco SAN-OS 3.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco NX-OS Software pour Cisco Nexus 7000 Series Switches versions ant\u00e9rieures \u00e0 la 5.1 ;",
"product": {
"name": "NX-OS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Video Surveillance Operations Manager (VSOM) ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Tous les syst\u00e8mes Cisco CTS TelePresence ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Management Center for Cisco Security Agent ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUne vuln\u00e9rabiliti\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Cisco NX-OS. Cette vuln\u00e9rabilit\u00e9\naffecte le serveur httpd Apache. Elle peut \u00eatre utilis\u00e9e \u00e0 l\u0027aide de\nrequ\u00eates HTTP sp\u00e9cialement con\u00e7ues (utilisation de l\u0027ent\u00eate range avec\ndes intervalles se chevauchant) pour provoquer un d\u00e9ni de service \u00e0\ndistance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Cisco 20110830-apache du 30 ao\u00fbt 2011 :",
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20110830-apache.shtml"
}
],
"reference": "CERTA-2011-AVI-488",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-09-01T00:00:00.000000"
},
{
"description": "modification du titre et ajout de syst\u00e8mes vuln\u00e9rables.",
"revision_date": "2011-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 dans Cisco NX-OS peut \u00eatre utilis\u00e9e pour r\u00e9aliser un\nd\u00e9ni de service \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Cisco",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20110830-apache",
"url": null
}
]
}
RHSA-2011_1245
Vulnerability from csaf_redhat - Published: 2011-08-31 22:43 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 4, 5, and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 4, 5, and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1245",
"url": "https://access.redhat.com/errata/RHSA-2011:1245"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1245.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:08+00:00",
"generator": {
"date": "2024-11-22T04:38:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1245",
"initial_release_date": "2011-08-31T22:43:00+00:00",
"revision_history": [
{
"date": "2011-08-31T22:43:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-08-31T18:44:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "RHEL Desktop Workstation (v. 5 client)",
"product": {
"name": "RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product_id": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.i386",
"product_id": "mod_ssl-1:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.i386",
"product_id": "httpd-manual-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386",
"product_id": "httpd-suexec-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.i386",
"product_id": "httpd-devel-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-0:2.0.52-48.ent.i386",
"product_id": "httpd-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.src",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.src",
"product_id": "httpd-0:2.2.3-53.el5_7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.src",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.src",
"product_id": "httpd-0:2.2.15-9.el6_1.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.src",
"product": {
"name": "httpd-0:2.0.52-48.ent.src",
"product_id": "httpd-0:2.0.52-48.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.ia64",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64",
"product_id": "mod_ssl-1:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64",
"product_id": "httpd-manual-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product_id": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64",
"product_id": "httpd-devel-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-0:2.0.52-48.ent.ia64",
"product_id": "httpd-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.ppc",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc",
"product_id": "mod_ssl-1:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc",
"product_id": "httpd-manual-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product_id": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc",
"product_id": "httpd-devel-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-0:2.0.52-48.ent.ppc",
"product_id": "httpd-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.s390x",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x",
"product_id": "mod_ssl-1:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x",
"product_id": "httpd-manual-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product_id": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x",
"product_id": "httpd-devel-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-0:2.0.52-48.ent.s390x",
"product_id": "httpd-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.s390",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.s390",
"product_id": "mod_ssl-1:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.s390",
"product_id": "httpd-manual-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390",
"product_id": "httpd-suexec-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.s390",
"product_id": "httpd-devel-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-0:2.0.52-48.ent.s390",
"product_id": "httpd-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product": {
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product_id": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.15-9.el6_1.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.src",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch"
},
"product_reference": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-08-31T22:43:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1330
Vulnerability from csaf_redhat - Published: 2011-09-21 20:00 - Updated: 2025-11-21 17:39Summary
Red Hat Security Advisory: JBoss Enterprise Web Server 1.0.2 security update
Notes
Topic
An update for the Apache HTTP Server component for JBoss Enterprise Web
Server 1.0.2 that fixes one security issue is now available from the Red
Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause the Apache HTTP
Server to use an excessive amount of memory and CPU time via HTTP requests
with a specially-crafted Range header. (CVE-2011-3192)
All users of JBoss Enterprise Web Server 1.0.2 as provided from the Red Hat
Customer Portal are advised to apply this update.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the Apache HTTP Server component for JBoss Enterprise Web\nServer 1.0.2 that fixes one security issue is now available from the Red\nHat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause the Apache HTTP\nServer to use an excessive amount of memory and CPU time via HTTP requests\nwith a specially-crafted Range header. (CVE-2011-3192)\n\nAll users of JBoss Enterprise Web Server 1.0.2 as provided from the Red Hat\nCustomer Portal are advised to apply this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1330",
"url": "https://access.redhat.com/errata/RHSA-2011:1330"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=1.0.2",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=1.0.2"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1330.json"
}
],
"title": "Red Hat Security Advisory: JBoss Enterprise Web Server 1.0.2 security update",
"tracking": {
"current_release_date": "2025-11-21T17:39:00+00:00",
"generator": {
"date": "2025-11-21T17:39:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1330",
"initial_release_date": "2011-09-21T20:00:00+00:00",
"revision_history": [
{
"date": "2011-09-21T20:00:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-02-20T12:43:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:39:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0",
"product": {
"name": "Red Hat JBoss Web Server 1.0",
"product_id": "Red Hat JBoss Web Server 1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-21T20:00:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, backup your\nexisting JBoss Enterprise Web Server installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Web Server 1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1330"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Web Server 1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1369
Vulnerability from csaf_redhat - Published: 2011-10-13 19:33 - Updated: 2025-11-21 17:39Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Application Stack v2.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Application Stack v2.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1369",
"url": "https://access.redhat.com/errata/RHSA-2011:1369"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1369.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2025-11-21T17:39:04+00:00",
"generator": {
"date": "2025-11-21T17:39:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1369",
"initial_release_date": "2011-10-13T19:33:00+00:00",
"revision_history": [
{
"date": "2011-10-13T19:33:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-10-13T15:43:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:39:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product": {
"name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_application_stack:2"
}
}
}
],
"category": "product_family",
"name": "Red Hat Application Stack"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product_id": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.13-3.el5s2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-3.el5s2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product": {
"name": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product_id": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.13-3.el5s2?arch=i386\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.src",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.src",
"product_id": "httpd-0:2.2.13-3.el5s2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.src"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.src",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-devel-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-manual-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386"
},
"product_reference": "mod_ssl-1:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-10-13T19:33:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1369"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1245
Vulnerability from csaf_redhat - Published: 2011-08-31 22:43 - Updated: 2025-11-21 17:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 4, 5, and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 4, 5, and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1245",
"url": "https://access.redhat.com/errata/RHSA-2011:1245"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1245.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2025-11-21T17:38:48+00:00",
"generator": {
"date": "2025-11-21T17:38:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1245",
"initial_release_date": "2011-08-31T22:43:00+00:00",
"revision_history": [
{
"date": "2011-08-31T22:43:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-08-31T18:44:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:38:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "RHEL Desktop Workstation (v. 5 client)",
"product": {
"name": "RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product_id": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product_id": "mod_ssl-1:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-manual-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-devel-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.x86_64",
"product": {
"name": "httpd-0:2.0.52-48.ent.x86_64",
"product_id": "httpd-0:2.0.52-48.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.i386",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386",
"product_id": "httpd-0:2.2.3-53.el5_7.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.i386",
"product_id": "mod_ssl-1:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.i386",
"product_id": "httpd-manual-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386",
"product_id": "httpd-suexec-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.i386",
"product_id": "httpd-devel-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.i386",
"product": {
"name": "httpd-0:2.0.52-48.ent.i386",
"product_id": "httpd-0:2.0.52-48.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.src",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.src",
"product_id": "httpd-0:2.2.3-53.el5_7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.src",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.src",
"product_id": "httpd-0:2.2.15-9.el6_1.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.src",
"product": {
"name": "httpd-0:2.0.52-48.ent.src",
"product_id": "httpd-0:2.0.52-48.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product_id": "httpd-0:2.2.3-53.el5_7.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.ia64",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64",
"product_id": "mod_ssl-1:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64",
"product_id": "httpd-manual-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product_id": "httpd-suexec-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64",
"product_id": "httpd-devel-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.ia64",
"product": {
"name": "httpd-0:2.0.52-48.ent.ia64",
"product_id": "httpd-0:2.0.52-48.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product_id": "httpd-0:2.2.3-53.el5_7.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.ppc",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc",
"product_id": "mod_ssl-1:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc",
"product_id": "httpd-manual-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product_id": "httpd-suexec-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc",
"product_id": "httpd-devel-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.ppc",
"product": {
"name": "httpd-0:2.0.52-48.ent.ppc",
"product_id": "httpd-0:2.0.52-48.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product_id": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-53.el5_7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product_id": "httpd-0:2.2.3-53.el5_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-53.el5_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.s390x",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x",
"product_id": "mod_ssl-1:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x",
"product_id": "httpd-manual-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product_id": "httpd-suexec-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x",
"product_id": "httpd-devel-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.s390x",
"product": {
"name": "httpd-0:2.0.52-48.ent.s390x",
"product_id": "httpd-0:2.0.52-48.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product_id": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-53.el5_7.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product_id": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-53.el5_7.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.52-48.ent.s390",
"product": {
"name": "mod_ssl-1:2.0.52-48.ent.s390",
"product_id": "mod_ssl-1:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.52-48.ent?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product_id": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-manual-0:2.0.52-48.ent.s390",
"product_id": "httpd-manual-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-suexec-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390",
"product_id": "httpd-suexec-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-suexec@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-devel-0:2.0.52-48.ent.s390",
"product_id": "httpd-devel-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.52-48.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.52-48.ent.s390",
"product": {
"name": "httpd-0:2.0.52-48.ent.s390",
"product_id": "httpd-0:2.0.52-48.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.52-48.ent?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product_id": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-9.el6_1.2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-9.el6_1.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product_id": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-9.el6_1.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product": {
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product_id": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.15-9.el6_1.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.src"
},
"product_reference": "httpd-0:2.0.52-48.ent.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-devel-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-manual-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-manual-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.i386"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.ia64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.ppc"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.s390"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.s390x"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-suexec-0:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:httpd-suexec-0:2.0.52-48.ent.x86_64"
},
"product_reference": "httpd-suexec-0:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.52-48.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:mod_ssl-1:2.0.52-48.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.52-48.ent.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of RHEL Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Client-Workstation-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.src",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.i386",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"relates_to_product_reference": "5Server-5.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.src",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.s390",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.15-9.el6_1.2.noarch as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch"
},
"product_reference": "httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.i686",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"relates_to_product_reference": "6Server-6.1.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.15-9.el6_1.2.x86_64",
"relates_to_product_reference": "6Server-6.1.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-08-31T22:43:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS:httpd-0:2.0.52-48.ent.i386",
"4AS:httpd-0:2.0.52-48.ent.ia64",
"4AS:httpd-0:2.0.52-48.ent.ppc",
"4AS:httpd-0:2.0.52-48.ent.s390",
"4AS:httpd-0:2.0.52-48.ent.s390x",
"4AS:httpd-0:2.0.52-48.ent.src",
"4AS:httpd-0:2.0.52-48.ent.x86_64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4AS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4AS:httpd-devel-0:2.0.52-48.ent.i386",
"4AS:httpd-devel-0:2.0.52-48.ent.ia64",
"4AS:httpd-devel-0:2.0.52-48.ent.ppc",
"4AS:httpd-devel-0:2.0.52-48.ent.s390",
"4AS:httpd-devel-0:2.0.52-48.ent.s390x",
"4AS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4AS:httpd-manual-0:2.0.52-48.ent.i386",
"4AS:httpd-manual-0:2.0.52-48.ent.ia64",
"4AS:httpd-manual-0:2.0.52-48.ent.ppc",
"4AS:httpd-manual-0:2.0.52-48.ent.s390",
"4AS:httpd-manual-0:2.0.52-48.ent.s390x",
"4AS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4AS:httpd-suexec-0:2.0.52-48.ent.i386",
"4AS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4AS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390",
"4AS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4AS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4AS:mod_ssl-1:2.0.52-48.ent.i386",
"4AS:mod_ssl-1:2.0.52-48.ent.ia64",
"4AS:mod_ssl-1:2.0.52-48.ent.ppc",
"4AS:mod_ssl-1:2.0.52-48.ent.s390",
"4AS:mod_ssl-1:2.0.52-48.ent.s390x",
"4AS:mod_ssl-1:2.0.52-48.ent.x86_64",
"4Desktop:httpd-0:2.0.52-48.ent.i386",
"4Desktop:httpd-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-0:2.0.52-48.ent.s390",
"4Desktop:httpd-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-0:2.0.52-48.ent.src",
"4Desktop:httpd-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.i386",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-devel-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390",
"4Desktop:httpd-devel-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-devel-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.i386",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-manual-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390",
"4Desktop:httpd-manual-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-manual-0:2.0.52-48.ent.x86_64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.i386",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ia64",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.ppc",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.s390x",
"4Desktop:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.i386",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ia64",
"4Desktop:mod_ssl-1:2.0.52-48.ent.ppc",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390",
"4Desktop:mod_ssl-1:2.0.52-48.ent.s390x",
"4Desktop:mod_ssl-1:2.0.52-48.ent.x86_64",
"4ES:httpd-0:2.0.52-48.ent.i386",
"4ES:httpd-0:2.0.52-48.ent.ia64",
"4ES:httpd-0:2.0.52-48.ent.ppc",
"4ES:httpd-0:2.0.52-48.ent.s390",
"4ES:httpd-0:2.0.52-48.ent.s390x",
"4ES:httpd-0:2.0.52-48.ent.src",
"4ES:httpd-0:2.0.52-48.ent.x86_64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4ES:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4ES:httpd-devel-0:2.0.52-48.ent.i386",
"4ES:httpd-devel-0:2.0.52-48.ent.ia64",
"4ES:httpd-devel-0:2.0.52-48.ent.ppc",
"4ES:httpd-devel-0:2.0.52-48.ent.s390",
"4ES:httpd-devel-0:2.0.52-48.ent.s390x",
"4ES:httpd-devel-0:2.0.52-48.ent.x86_64",
"4ES:httpd-manual-0:2.0.52-48.ent.i386",
"4ES:httpd-manual-0:2.0.52-48.ent.ia64",
"4ES:httpd-manual-0:2.0.52-48.ent.ppc",
"4ES:httpd-manual-0:2.0.52-48.ent.s390",
"4ES:httpd-manual-0:2.0.52-48.ent.s390x",
"4ES:httpd-manual-0:2.0.52-48.ent.x86_64",
"4ES:httpd-suexec-0:2.0.52-48.ent.i386",
"4ES:httpd-suexec-0:2.0.52-48.ent.ia64",
"4ES:httpd-suexec-0:2.0.52-48.ent.ppc",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390",
"4ES:httpd-suexec-0:2.0.52-48.ent.s390x",
"4ES:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4ES:mod_ssl-1:2.0.52-48.ent.i386",
"4ES:mod_ssl-1:2.0.52-48.ent.ia64",
"4ES:mod_ssl-1:2.0.52-48.ent.ppc",
"4ES:mod_ssl-1:2.0.52-48.ent.s390",
"4ES:mod_ssl-1:2.0.52-48.ent.s390x",
"4ES:mod_ssl-1:2.0.52-48.ent.x86_64",
"4WS:httpd-0:2.0.52-48.ent.i386",
"4WS:httpd-0:2.0.52-48.ent.ia64",
"4WS:httpd-0:2.0.52-48.ent.ppc",
"4WS:httpd-0:2.0.52-48.ent.s390",
"4WS:httpd-0:2.0.52-48.ent.s390x",
"4WS:httpd-0:2.0.52-48.ent.src",
"4WS:httpd-0:2.0.52-48.ent.x86_64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.i386",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ia64",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.ppc",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.s390x",
"4WS:httpd-debuginfo-0:2.0.52-48.ent.x86_64",
"4WS:httpd-devel-0:2.0.52-48.ent.i386",
"4WS:httpd-devel-0:2.0.52-48.ent.ia64",
"4WS:httpd-devel-0:2.0.52-48.ent.ppc",
"4WS:httpd-devel-0:2.0.52-48.ent.s390",
"4WS:httpd-devel-0:2.0.52-48.ent.s390x",
"4WS:httpd-devel-0:2.0.52-48.ent.x86_64",
"4WS:httpd-manual-0:2.0.52-48.ent.i386",
"4WS:httpd-manual-0:2.0.52-48.ent.ia64",
"4WS:httpd-manual-0:2.0.52-48.ent.ppc",
"4WS:httpd-manual-0:2.0.52-48.ent.s390",
"4WS:httpd-manual-0:2.0.52-48.ent.s390x",
"4WS:httpd-manual-0:2.0.52-48.ent.x86_64",
"4WS:httpd-suexec-0:2.0.52-48.ent.i386",
"4WS:httpd-suexec-0:2.0.52-48.ent.ia64",
"4WS:httpd-suexec-0:2.0.52-48.ent.ppc",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390",
"4WS:httpd-suexec-0:2.0.52-48.ent.s390x",
"4WS:httpd-suexec-0:2.0.52-48.ent.x86_64",
"4WS:mod_ssl-1:2.0.52-48.ent.i386",
"4WS:mod_ssl-1:2.0.52-48.ent.ia64",
"4WS:mod_ssl-1:2.0.52-48.ent.ppc",
"4WS:mod_ssl-1:2.0.52-48.ent.s390",
"4WS:mod_ssl-1:2.0.52-48.ent.s390x",
"4WS:mod_ssl-1:2.0.52-48.ent.x86_64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Client-Workstation-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Client-Workstation-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.src",
"5Server-5.7.Z:httpd-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-debuginfo-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.ppc64",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-devel-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:httpd-manual-0:2.2.3-53.el5_7.1.x86_64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.i386",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ia64",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.ppc",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.s390x",
"5Server-5.7.Z:mod_ssl-1:2.2.3-53.el5_7.1.x86_64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.src",
"6Server-6.1.z:httpd-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-debuginfo-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-devel-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:httpd-manual-0:2.2.15-9.el6_1.2.noarch",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:httpd-tools-0:2.2.15-9.el6_1.2.x86_64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.i686",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.ppc64",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.s390x",
"6Server-6.1.z:mod_ssl-1:2.2.15-9.el6_1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011_1330
Vulnerability from csaf_redhat - Published: 2011-09-21 20:00 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: JBoss Enterprise Web Server 1.0.2 security update
Notes
Topic
An update for the Apache HTTP Server component for JBoss Enterprise Web
Server 1.0.2 that fixes one security issue is now available from the Red
Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause the Apache HTTP
Server to use an excessive amount of memory and CPU time via HTTP requests
with a specially-crafted Range header. (CVE-2011-3192)
All users of JBoss Enterprise Web Server 1.0.2 as provided from the Red Hat
Customer Portal are advised to apply this update.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the Apache HTTP Server component for JBoss Enterprise Web\nServer 1.0.2 that fixes one security issue is now available from the Red\nHat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause the Apache HTTP\nServer to use an excessive amount of memory and CPU time via HTTP requests\nwith a specially-crafted Range header. (CVE-2011-3192)\n\nAll users of JBoss Enterprise Web Server 1.0.2 as provided from the Red Hat\nCustomer Portal are advised to apply this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1330",
"url": "https://access.redhat.com/errata/RHSA-2011:1330"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=1.0.2",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=webserver\u0026downloadType=securityPatches\u0026version=1.0.2"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1330.json"
}
],
"title": "Red Hat Security Advisory: JBoss Enterprise Web Server 1.0.2 security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:26+00:00",
"generator": {
"date": "2024-11-22T04:38:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1330",
"initial_release_date": "2011-09-21T20:00:00+00:00",
"revision_history": [
{
"date": "2011-09-21T20:00:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-02-20T12:43:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0",
"product": {
"name": "Red Hat JBoss Web Server 1.0",
"product_id": "Red Hat JBoss Web Server 1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-21T20:00:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, backup your\nexisting JBoss Enterprise Web Server installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Web Server 1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1330"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Web Server 1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1329
Vulnerability from csaf_redhat - Published: 2011-09-21 19:50 - Updated: 2025-11-21 17:39Summary
Red Hat Security Advisory: httpd and httpd22 security update
Notes
Topic
Updated httpd and httpd22 packages that fix one security issue are now
available for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise
Linux 4, 5, and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause the Apache HTTP
Server to use an excessive amount of memory and CPU time via HTTP requests
with a specially-crafted Range header. (CVE-2011-3192)
All users of JBoss Enterprise Web Server 1.0.2 should upgrade to these
updated packages, which contain a backported patch to correct this issue.
After installing the updated packages, Red Hat Enterprise Linux 4 users
must restart the httpd22 service, and Red Hat Enterprise Linux 5 and 6
users must restart the httpd service, for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd and httpd22 packages that fix one security issue are now\navailable for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise\nLinux 4, 5, and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause the Apache HTTP\nServer to use an excessive amount of memory and CPU time via HTTP requests\nwith a specially-crafted Range header. (CVE-2011-3192)\n\nAll users of JBoss Enterprise Web Server 1.0.2 should upgrade to these\nupdated packages, which contain a backported patch to correct this issue.\nAfter installing the updated packages, Red Hat Enterprise Linux 4 users\nmust restart the httpd22 service, and Red Hat Enterprise Linux 5 and 6\nusers must restart the httpd service, for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1329",
"url": "https://access.redhat.com/errata/RHSA-2011:1329"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1329.json"
}
],
"title": "Red Hat Security Advisory: httpd and httpd22 security update",
"tracking": {
"current_release_date": "2025-11-21T17:39:00+00:00",
"generator": {
"date": "2025-11-21T17:39:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1329",
"initial_release_date": "2011-09-21T19:50:00+00:00",
"revision_history": [
{
"date": "2011-09-21T19:50:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-21T15:58:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:39:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product": {
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product": {
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product": {
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-debuginfo@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-manual@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product_id": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl22@2.2.17-16.ep5.el4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-14.1.ep5.el5?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-13.2.ep5.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-debuginfo@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-manual@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product_id": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl22@2.2.17-16.ep5.el4?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product_id": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-14.1.ep5.el5?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product_id": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-13.2.ep5.el6?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-13.2.ep5.el6?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.src",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.src",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.src",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.src as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.src",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.src as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.src",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-21T19:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1329"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011_1329
Vulnerability from csaf_redhat - Published: 2011-09-21 19:50 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: httpd and httpd22 security update
Notes
Topic
Updated httpd and httpd22 packages that fix one security issue are now
available for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise
Linux 4, 5, and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause the Apache HTTP
Server to use an excessive amount of memory and CPU time via HTTP requests
with a specially-crafted Range header. (CVE-2011-3192)
All users of JBoss Enterprise Web Server 1.0.2 should upgrade to these
updated packages, which contain a backported patch to correct this issue.
After installing the updated packages, Red Hat Enterprise Linux 4 users
must restart the httpd22 service, and Red Hat Enterprise Linux 5 and 6
users must restart the httpd service, for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd and httpd22 packages that fix one security issue are now\navailable for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise\nLinux 4, 5, and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause the Apache HTTP\nServer to use an excessive amount of memory and CPU time via HTTP requests\nwith a specially-crafted Range header. (CVE-2011-3192)\n\nAll users of JBoss Enterprise Web Server 1.0.2 should upgrade to these\nupdated packages, which contain a backported patch to correct this issue.\nAfter installing the updated packages, Red Hat Enterprise Linux 4 users\nmust restart the httpd22 service, and Red Hat Enterprise Linux 5 and 6\nusers must restart the httpd service, for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1329",
"url": "https://access.redhat.com/errata/RHSA-2011:1329"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1329.json"
}
],
"title": "Red Hat Security Advisory: httpd and httpd22 security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:22+00:00",
"generator": {
"date": "2024-11-22T04:38:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1329",
"initial_release_date": "2011-09-21T19:50:00+00:00",
"revision_history": [
{
"date": "2011-09-21T19:50:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-21T15:58:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product": {
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product": {
"name": "Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product": {
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-debuginfo@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-manual@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util-devel@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product_id": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util@2.2.17-16.ep5.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product_id": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl22@2.2.17-16.ep5.el4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-14.1.ep5.el5?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product_id": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-14.1.ep5.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-13.2.ep5.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product_id": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-13.2.ep5.el6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-debuginfo@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-manual@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util-devel@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product_id": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22-apr-util@2.2.17-16.ep5.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product_id": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl22@2.2.17-16.ep5.el4?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product_id": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-14.1.ep5.el5?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product_id": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-14.1.ep5.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product_id": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.17-13.2.ep5.el6?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.17-13.2.ep5.el6?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product_id": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.17-13.2.ep5.el6?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd22-0:2.2.17-16.ep5.el4.src",
"product": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src",
"product_id": "httpd22-0:2.2.17-16.ep5.el4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd22@2.2.17-16.ep5.el4?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product_id": "httpd-0:2.2.17-14.1.ep5.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-14.1.ep5.el5?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product_id": "httpd-0:2.2.17-13.2.ep5.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.17-13.2.ep5.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.src",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 AS",
"product_id": "4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4AS-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.src as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.src",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.i386 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64 as a component of Red Hat JBoss Web Server 1.0 for RHEL 4 ES",
"product_id": "4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64"
},
"product_reference": "mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"relates_to_product_reference": "4ES-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.src as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.src",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386"
},
"product_reference": "mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 5 Server",
"product_id": "5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64"
},
"product_reference": "mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"relates_to_product_reference": "5Server-JBEWS-5.0.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.src as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.src",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386"
},
"product_reference": "mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"relates_to_product_reference": "6Server-JBEWS-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64 as a component of Red Hat JBoss Enterprise Web Server 1 for RHEL 6 Server",
"product_id": "6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
},
"product_reference": "mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64",
"relates_to_product_reference": "6Server-JBEWS-1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-21T19:50:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1329"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4AS-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4AS-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.src",
"4ES-JBEWS-5.0.0:httpd22-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-apr-util-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-debuginfo-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-devel-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:httpd22-manual-0:2.2.17-16.ep5.el4.x86_64",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.i386",
"4ES-JBEWS-5.0.0:mod_ssl22-1:2.2.17-16.ep5.el4.x86_64",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.src",
"5Server-JBEWS-5.0.0:httpd-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-devel-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:httpd-manual-0:2.2.17-14.1.ep5.el5.x86_64",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.i386",
"5Server-JBEWS-5.0.0:mod_ssl-1:2.2.17-14.1.ep5.el5.x86_64",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.src",
"6Server-JBEWS-1:httpd-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-devel-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-manual-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:httpd-tools-0:2.2.17-13.2.ep5.el6.x86_64",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.i386",
"6Server-JBEWS-1:mod_ssl-1:2.2.17-13.2.ep5.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011_1369
Vulnerability from csaf_redhat - Published: 2011-10-13 19:33 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Application Stack v2.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Application Stack v2.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1369",
"url": "https://access.redhat.com/errata/RHSA-2011:1369"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1369.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:30+00:00",
"generator": {
"date": "2024-11-22T04:38:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1369",
"initial_release_date": "2011-10-13T19:33:00+00:00",
"revision_history": [
{
"date": "2011-10-13T19:33:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-10-13T15:43:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product": {
"name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_application_stack:2"
}
}
}
],
"category": "product_family",
"name": "Red Hat Application Stack"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product_id": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.13-3.el5s2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-3.el5s2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-manual-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-devel-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product": {
"name": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product_id": "mod_ssl-1:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.13-3.el5s2?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product_id": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.13-3.el5s2?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.13-3.el5s2.src",
"product": {
"name": "httpd-0:2.2.13-3.el5s2.src",
"product_id": "httpd-0:2.2.13-3.el5s2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.13-3.el5s2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.src"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.src",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-devel-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386"
},
"product_reference": "httpd-manual-0:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64"
},
"product_reference": "httpd-manual-0:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.13-3.el5s2.i386 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386"
},
"product_reference": "mod_ssl-1:2.2.13-3.el5s2.i386",
"relates_to_product_reference": "5Server-Stacks"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.13-3.el5s2.x86_64 as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)",
"product_id": "5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.13-3.el5s2.x86_64",
"relates_to_product_reference": "5Server-Stacks"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-10-13T19:33:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1369"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.src",
"5Server-Stacks:httpd-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-debuginfo-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-devel-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.i386",
"5Server-Stacks:httpd-manual-0:2.2.13-3.el5s2.x86_64",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.i386",
"5Server-Stacks:mod_ssl-1:2.2.13-3.el5s2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1294
Vulnerability from csaf_redhat - Published: 2011-09-14 18:59 - Updated: 2025-11-21 17:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.3 Long Life, 5.6 Extended Update Support, and
6.0 Extended Update Support.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 5.3 Long Life, 5.6 Extended Update Support, and\n6.0 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1294",
"url": "https://access.redhat.com/errata/RHSA-2011:1294"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1294.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2025-11-21T17:38:52+00:00",
"generator": {
"date": "2025-11-21T17:38:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1294",
"initial_release_date": "2011-09-14T18:59:00+00:00",
"revision_history": [
{
"date": "2011-09-14T18:59:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-14T15:01:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:38:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5.6.z server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product": {
"name": "Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_mission_critical:5.3"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.src",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.src",
"product_id": "httpd-0:2.2.3-45.el5_6.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.src",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.src",
"product_id": "httpd-0:2.2.3-22.el5_3.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.src",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.src",
"product_id": "httpd-0:2.2.15-5.el6_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product": {
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product_id": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.15-5.el6_0.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.src as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.src",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.src as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.src",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.src",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch"
},
"product_reference": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-14T18:59:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1294"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011_1300
Vulnerability from csaf_redhat - Published: 2011-09-15 17:42 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 3 Extended Life Cycle Support.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 3 Extended Life Cycle Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1300",
"url": "https://access.redhat.com/errata/RHSA-2011:1300"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1300.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:18+00:00",
"generator": {
"date": "2024-11-22T04:38:18+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1300",
"initial_release_date": "2011-09-15T17:42:00+00:00",
"revision_history": [
{
"date": "2011-09-15T17:42:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-15T13:52:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:18+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS (v. 3 ELS)",
"product": {
"name": "Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES (v. 3 ELS)",
"product": {
"name": "Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:3::es"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-78.ent.src",
"product": {
"name": "httpd-0:2.0.46-78.ent.src",
"product_id": "httpd-0:2.0.46-78.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-78.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-0:2.0.46-78.ent.i386",
"product_id": "httpd-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-78.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.46-78.ent.i386",
"product_id": "httpd-devel-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-78.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-78.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.46-78.ent.i386",
"product_id": "mod_ssl-1:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-78.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-78.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.src as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-0:2.0.46-78.ent.src"
},
"product_reference": "httpd-0:2.0.46-78.ent.src",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.src as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-0:2.0.46-78.ent.src"
},
"product_reference": "httpd-0:2.0.46-78.ent.src",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-15T17:42:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1300"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011_1294
Vulnerability from csaf_redhat - Published: 2011-09-14 18:59 - Updated: 2024-11-22 04:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.3 Long Life, 5.6 Extended Update Support, and
6.0 Extended Update Support.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 5.3 Long Life, 5.6 Extended Update Support, and\n6.0 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1294",
"url": "https://access.redhat.com/errata/RHSA-2011:1294"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1294.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2024-11-22T04:38:13+00:00",
"generator": {
"date": "2024-11-22T04:38:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2011:1294",
"initial_release_date": "2011-09-14T18:59:00+00:00",
"revision_history": [
{
"date": "2011-09-14T18:59:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-14T15:01:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T04:38:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5.6.z server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product": {
"name": "Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_mission_critical:5.3"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product_id": "httpd-0:2.2.3-22.el5_3.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product_id": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product_id": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-45.el5_6.2?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.i386",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.i386",
"product_id": "httpd-0:2.2.3-45.el5_6.2.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.3-22.el5_3.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product_id": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.3-22.el5_3.3?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.i386",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.i386",
"product_id": "httpd-0:2.2.3-22.el5_3.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.2.3-45.el5_6.2.src",
"product": {
"name": "httpd-0:2.2.3-45.el5_6.2.src",
"product_id": "httpd-0:2.2.3-45.el5_6.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-45.el5_6.2?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.3-22.el5_3.3.src",
"product": {
"name": "httpd-0:2.2.3-22.el5_3.3.src",
"product_id": "httpd-0:2.2.3-22.el5_3.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.3-22.el5_3.3?arch=src"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.src",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.src",
"product_id": "httpd-0:2.2.15-5.el6_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product_id": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.2.15-5.el6_0.1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.2.15-5.el6_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product_id": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-tools@2.2.15-5.el6_0.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product": {
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product_id": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-manual@2.2.15-5.el6_0.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.src as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.src",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.i386",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.ia64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.3 server)",
"product_id": "5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"relates_to_product_reference": "5Server-5.3.LL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.src as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.src",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.s390",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.i386",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
"product_id": "5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64"
},
"product_reference": "mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"relates_to_product_reference": "5Server-5.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.src",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.s390",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-manual-0:2.2.15-5.el6_0.1.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch"
},
"product_reference": "httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.i686",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"relates_to_product_reference": "6Server-6.0.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
"product_id": "6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
},
"product_reference": "mod_ssl-1:2.2.15-5.el6_0.1.x86_64",
"relates_to_product_reference": "6Server-6.0.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-14T18:59:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1294"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.src",
"5Server-5.3.LL:httpd-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-debuginfo-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-devel-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:httpd-manual-0:2.2.3-22.el5_3.3.x86_64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.i386",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.ia64",
"5Server-5.3.LL:mod_ssl-1:2.2.3-22.el5_3.3.x86_64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.src",
"5Server-5.6.Z:httpd-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-debuginfo-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.ppc64",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-devel-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:httpd-manual-0:2.2.3-45.el5_6.2.x86_64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.i386",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ia64",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.ppc",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.s390x",
"5Server-5.6.Z:mod_ssl-1:2.2.3-45.el5_6.2.x86_64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.src",
"6Server-6.0.z:httpd-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-debuginfo-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-devel-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:httpd-manual-0:2.2.15-5.el6_0.1.noarch",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:httpd-tools-0:2.2.15-5.el6_0.1.x86_64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.i686",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.ppc64",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.s390x",
"6Server-6.0.z:mod_ssl-1:2.2.15-5.el6_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
RHSA-2011:1300
Vulnerability from csaf_redhat - Published: 2011-09-15 17:42 - Updated: 2025-11-21 17:38Summary
Red Hat Security Advisory: httpd security update
Notes
Topic
Updated httpd packages that fix one security issue are now available for
Red Hat Enterprise Linux 3 Extended Life Cycle Support.
The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.
Details
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that fix one security issue are now available for\nRed Hat Enterprise Linux 3 Extended Life Cycle Support.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP Server is a popular web server.\n\nA flaw was found in the way the Apache HTTP Server handled Range HTTP\nheaders. A remote attacker could use this flaw to cause httpd to use an\nexcessive amount of memory and CPU time via HTTP requests with a\nspecially-crafted Range header. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2011:1300",
"url": "https://access.redhat.com/errata/RHSA-2011:1300"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1300.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2025-11-21T17:38:54+00:00",
"generator": {
"date": "2025-11-21T17:38:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2011:1300",
"initial_release_date": "2011-09-15T17:42:00+00:00",
"revision_history": [
{
"date": "2011-09-15T17:42:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2011-09-15T13:52:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:38:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS (v. 3 ELS)",
"product": {
"name": "Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES (v. 3 ELS)",
"product": {
"name": "Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:3::es"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-78.ent.src",
"product": {
"name": "httpd-0:2.0.46-78.ent.src",
"product_id": "httpd-0:2.0.46-78.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-78.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-0:2.0.46-78.ent.i386",
"product_id": "httpd-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-78.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.46-78.ent.i386",
"product_id": "httpd-devel-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-78.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-78.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.46-78.ent.i386",
"product_id": "mod_ssl-1:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-78.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-78.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.src as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-0:2.0.46-78.ent.src"
},
"product_reference": "httpd-0:2.0.46-78.ent.src",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux AS (v. 3 ELS)",
"product_id": "3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-78.ent.i386",
"relates_to_product_reference": "3AS-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-78.ent.src as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-0:2.0.46-78.ent.src"
},
"product_reference": "httpd-0:2.0.46-78.ent.src",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-78.ent.i386 as a component of Red Hat Enterprise Linux ES (v. 3 ELS)",
"product_id": "3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-78.ent.i386",
"relates_to_product_reference": "3ES-ELS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-3192",
"discovery_date": "2011-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "732928"
}
],
"notes": [
{
"category": "description",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: multiple ranges DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Before updated packages are deployed, users can deploy configuration changes to mitigate this flaw:\nhttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c18",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "RHBZ#732928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-3192",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
}
],
"release_date": "2011-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2011-09-15T17:42:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2011:1300"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"3AS-ELS:httpd-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-0:2.0.46-78.ent.src",
"3AS-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3AS-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3AS-ELS:mod_ssl-1:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-0:2.0.46-78.ent.src",
"3ES-ELS:httpd-debuginfo-0:2.0.46-78.ent.i386",
"3ES-ELS:httpd-devel-0:2.0.46-78.ent.i386",
"3ES-ELS:mod_ssl-1:2.0.46-78.ent.i386"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "httpd: multiple ranges DoS"
}
]
}
FKIE_CVE-2011-3192
Vulnerability from fkie_nvd - Published: 2011-08-29 15:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html | Broken Link | |
| secalert@redhat.com | http://blogs.oracle.com/security/entry/security_alert_for_cve_2011 | Broken Link | |
| secalert@redhat.com | http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html | Broken Link | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e | ||
| secalert@redhat.com | http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=131551295528105&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=131731002122529&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=132033751509019&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=133477473521382&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=133951357207000&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=134987041210674&w=2 | Issue Tracking, Mailing List | |
| secalert@redhat.com | http://osvdb.org/74721 | Broken Link | |
| secalert@redhat.com | http://seclists.org/fulldisclosure/2011/Aug/175 | Exploit, Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://secunia.com/advisories/45606 | Not Applicable, Vendor Advisory | |
| secalert@redhat.com | http://secunia.com/advisories/45937 | Not Applicable | |
| secalert@redhat.com | http://secunia.com/advisories/46000 | Not Applicable | |
| secalert@redhat.com | http://secunia.com/advisories/46125 | Not Applicable | |
| secalert@redhat.com | http://secunia.com/advisories/46126 | Not Applicable | |
| secalert@redhat.com | http://securitytracker.com/id?1025960 | Broken Link, Third Party Advisory, VDB Entry | |
| secalert@redhat.com | http://support.apple.com/kb/HT5002 | Third Party Advisory | |
| secalert@redhat.com | http://www.apache.org/dist/httpd/Announcement2.2.html | Broken Link | |
| secalert@redhat.com | http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml | Third Party Advisory | |
| secalert@redhat.com | http://www.exploit-db.com/exploits/17696 | Exploit, Third Party Advisory, VDB Entry | |
| secalert@redhat.com | http://www.gossamer-threads.com/lists/apache/dev/401638 | Third Party Advisory | |
| secalert@redhat.com | http://www.kb.cert.org/vuls/id/405811 | Third Party Advisory, US Government Resource | |
| secalert@redhat.com | http://www.mandriva.com/security/advisories?name=MDVSA-2011:130 | Broken Link | |
| secalert@redhat.com | http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 | Broken Link | |
| secalert@redhat.com | http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html | Third Party Advisory | |
| secalert@redhat.com | http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html | Third Party Advisory | |
| secalert@redhat.com | http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html | Third Party Advisory | |
| secalert@redhat.com | http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1245.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1294.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1300.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1329.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1330.html | Third Party Advisory | |
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2011-1369.html | Third Party Advisory | |
| secalert@redhat.com | http://www.securityfocus.com/bid/49303 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | http://www.ubuntu.com/usn/USN-1199-1 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=732928 | Exploit, Issue Tracking, Third Party Advisory | |
| secalert@redhat.com | https://exchange.xforce.ibmcloud.com/vulnerabilities/69396 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 | Third Party Advisory | |
| secalert@redhat.com | https://issues.apache.org/bugzilla/show_bug.cgi?id=51714 | Exploit, Issue Tracking, Vendor Advisory | |
| secalert@redhat.com | https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E | ||
| secalert@redhat.com | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762 | Third Party Advisory | |
| secalert@redhat.com | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824 | Third Party Advisory | |
| secalert@redhat.com | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://blogs.oracle.com/security/entry/security_alert_for_cve_2011 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=131551295528105&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=131731002122529&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=132033751509019&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=133477473521382&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=133951357207000&w=2 | Issue Tracking, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=134987041210674&w=2 | Issue Tracking, Mailing List | |
| af854a3a-2127-422b-91ae-364da2661108 | http://osvdb.org/74721 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2011/Aug/175 | Exploit, Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/45606 | Not Applicable, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/45937 | Not Applicable | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/46000 | Not Applicable | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/46125 | Not Applicable | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/46126 | Not Applicable | |
| af854a3a-2127-422b-91ae-364da2661108 | http://securitytracker.com/id?1025960 | Broken Link, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://support.apple.com/kb/HT5002 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.apache.org/dist/httpd/Announcement2.2.html | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.exploit-db.com/exploits/17696 | Exploit, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.gossamer-threads.com/lists/apache/dev/401638 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/405811 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2011:130 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1245.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1294.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1300.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1329.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1330.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2011-1369.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/49303 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/USN-1199-1 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=732928 | Exploit, Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/69396 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://issues.apache.org/bugzilla/show_bug.cgi?id=51714 | Exploit, Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| apache | http_server | * | |
| apache | http_server | * | |
| opensuse | opensuse | 11.3 | |
| opensuse | opensuse | 11.4 | |
| suse | linux_enterprise_server | 10 | |
| suse | linux_enterprise_server | 10 | |
| suse | linux_enterprise_server | 10 | |
| suse | linux_enterprise_server | 11 | |
| suse | linux_enterprise_server | 11 | |
| suse | linux_enterprise_software_development_kit | 10 | |
| suse | linux_enterprise_software_development_kit | 10 | |
| suse | linux_enterprise_software_development_kit | 11 | |
| canonical | ubuntu_linux | 8.04 | |
| canonical | ubuntu_linux | 10.04 | |
| canonical | ubuntu_linux | 10.10 | |
| canonical | ubuntu_linux | 11.04 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E8032B39-37CC-4B9F-8D09-A0171E66BE47",
"versionEndExcluding": "2.0.65",
"versionStartIncluding": "2.0.35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "43A849EE-9D31-4289-84AF-E6831294297F",
"versionEndExcluding": "2.2.20",
"versionStartIncluding": "2.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5646FDE9-CF21-46A9-B89D-F5BBDB4249AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*",
"matchCriteriaId": "105187A7-2AFE-46F9-B0A9-F09C7E10BFBD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*",
"matchCriteriaId": "79A35457-EAA3-4BF9-A4DA-B2E414A75A02",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*",
"matchCriteriaId": "D1D7B467-58DD-45F1-9F1F-632620DF072A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*",
"matchCriteriaId": "A44C3422-0D42-473E-ABB4-279D7494EE2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*",
"matchCriteriaId": "A6B7CDCA-6F39-4113-B5D3-3AA9D7F3D809",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*",
"matchCriteriaId": "3DB8A616-865B-4E70-BA2E-BE5F0BA7A351",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*",
"matchCriteriaId": "436EF2ED-FDBB-4B64-8EC4-33C3E4253F06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*",
"matchCriteriaId": "E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
"matchCriteriaId": "7EBFE35C-E243-43D1-883D-4398D71763CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
"matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*",
"matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*",
"matchCriteriaId": "EF49D26F-142E-468B-87C1-BABEA445255C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086."
},
{
"lang": "es",
"value": "El filtro byterange en el Servidor Apache HTTP v1.3.x, v2.0.x hasta v2.0.64, y v2.2.x hasta v2.2.19 permite a tacantes remotos provocar una denegaci\u00f3n de servicio (consumo de memoria y CPU) a trav\u00e9s de una cabecera Range que expresa m\u00faltiple rangos de solapamiento, como se explot\u00f3 en Agosto 2011, una vulnerabilidad diferente que CVE-2007-0086."
}
],
"id": "CVE-2011-3192",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2011-08-29T15:55:02.017",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"source": "secalert@redhat.com",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e"
},
{
"source": "secalert@redhat.com",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://osvdb.org/74721"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/45606"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/45937"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46000"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46125"
},
{
"source": "secalert@redhat.com",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46126"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1025960"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"source": "secalert@redhat.com",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/49303"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://osvdb.org/74721"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/45606"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/45937"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46000"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46125"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46126"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1025960"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/49303"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
OPENSUSE-SU-2024:10268-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
apache2-2.4.23-4.1 on GA media
Notes
Title of the patch
apache2-2.4.23-4.1 on GA media
Description of the patch
These are all security issues fixed in the apache2-2.4.23-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10268
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "apache2-2.4.23-4.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the apache2-2.4.23-4.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10268",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10268-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0023 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1191 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1195 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1890 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1891 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1891/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1955 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1956 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1956/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-2412 page",
"url": "https://www.suse.com/security/cve/CVE-2009-2412/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-2699 page",
"url": "https://www.suse.com/security/cve/CVE-2009-2699/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3094 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3095 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3555 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3555/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3560 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3560/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-3720 page",
"url": "https://www.suse.com/security/cve/CVE-2009-3720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0408 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0408/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0425 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0425/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-0434 page",
"url": "https://www.suse.com/security/cve/CVE-2010-0434/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1452 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1452/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1623 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2068 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-1176 page",
"url": "https://www.suse.com/security/cve/CVE-2011-1176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3192 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3368 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-3607 page",
"url": "https://www.suse.com/security/cve/CVE-2011-3607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4317 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0021 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0031 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0053 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0053/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2687 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3499 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3502 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3502/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1896 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-2249 page",
"url": "https://www.suse.com/security/cve/CVE-2013-2249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-5704 page",
"url": "https://www.suse.com/security/cve/CVE-2013-5704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-6438 page",
"url": "https://www.suse.com/security/cve/CVE-2013-6438/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0098 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0117 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0118 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0226 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0226/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0231 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3523 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3523/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3581 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3581/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3583 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3583/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8109 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8109/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0228 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0253 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-4000 page",
"url": "https://www.suse.com/security/cve/CVE-2015-4000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4979 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4979/"
}
],
"title": "apache2-2.4.23-4.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10268-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-2.4.23-4.1.aarch64",
"product_id": "apache2-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-devel-2.4.23-4.1.aarch64",
"product_id": "apache2-devel-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-doc-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-doc-2.4.23-4.1.aarch64",
"product_id": "apache2-doc-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-event-2.4.23-4.1.aarch64",
"product_id": "apache2-event-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-example-pages-2.4.23-4.1.aarch64",
"product_id": "apache2-example-pages-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-prefork-2.4.23-4.1.aarch64",
"product_id": "apache2-prefork-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-utils-2.4.23-4.1.aarch64",
"product_id": "apache2-utils-2.4.23-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.23-4.1.aarch64",
"product": {
"name": "apache2-worker-2.4.23-4.1.aarch64",
"product_id": "apache2-worker-2.4.23-4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-2.4.23-4.1.ppc64le",
"product_id": "apache2-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-devel-2.4.23-4.1.ppc64le",
"product_id": "apache2-devel-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-doc-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-doc-2.4.23-4.1.ppc64le",
"product_id": "apache2-doc-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-event-2.4.23-4.1.ppc64le",
"product_id": "apache2-event-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-example-pages-2.4.23-4.1.ppc64le",
"product_id": "apache2-example-pages-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-prefork-2.4.23-4.1.ppc64le",
"product_id": "apache2-prefork-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-utils-2.4.23-4.1.ppc64le",
"product_id": "apache2-utils-2.4.23-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.23-4.1.ppc64le",
"product": {
"name": "apache2-worker-2.4.23-4.1.ppc64le",
"product_id": "apache2-worker-2.4.23-4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.23-4.1.s390x",
"product": {
"name": "apache2-2.4.23-4.1.s390x",
"product_id": "apache2-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.23-4.1.s390x",
"product": {
"name": "apache2-devel-2.4.23-4.1.s390x",
"product_id": "apache2-devel-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-doc-2.4.23-4.1.s390x",
"product": {
"name": "apache2-doc-2.4.23-4.1.s390x",
"product_id": "apache2-doc-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.23-4.1.s390x",
"product": {
"name": "apache2-event-2.4.23-4.1.s390x",
"product_id": "apache2-event-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.23-4.1.s390x",
"product": {
"name": "apache2-example-pages-2.4.23-4.1.s390x",
"product_id": "apache2-example-pages-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.23-4.1.s390x",
"product": {
"name": "apache2-prefork-2.4.23-4.1.s390x",
"product_id": "apache2-prefork-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.23-4.1.s390x",
"product": {
"name": "apache2-utils-2.4.23-4.1.s390x",
"product_id": "apache2-utils-2.4.23-4.1.s390x"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.23-4.1.s390x",
"product": {
"name": "apache2-worker-2.4.23-4.1.s390x",
"product_id": "apache2-worker-2.4.23-4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "apache2-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-2.4.23-4.1.x86_64",
"product_id": "apache2-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-devel-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-devel-2.4.23-4.1.x86_64",
"product_id": "apache2-devel-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-doc-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-doc-2.4.23-4.1.x86_64",
"product_id": "apache2-doc-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-event-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-event-2.4.23-4.1.x86_64",
"product_id": "apache2-event-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-example-pages-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-example-pages-2.4.23-4.1.x86_64",
"product_id": "apache2-example-pages-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-prefork-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-prefork-2.4.23-4.1.x86_64",
"product_id": "apache2-prefork-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-utils-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-utils-2.4.23-4.1.x86_64",
"product_id": "apache2-utils-2.4.23-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "apache2-worker-2.4.23-4.1.x86_64",
"product": {
"name": "apache2-worker-2.4.23-4.1.x86_64",
"product_id": "apache2-worker-2.4.23-4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x"
},
"product_reference": "apache2-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-devel-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-devel-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x"
},
"product_reference": "apache2-devel-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-devel-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-devel-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-doc-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-doc-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-doc-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-doc-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-doc-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x"
},
"product_reference": "apache2-doc-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-doc-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-doc-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-event-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-event-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x"
},
"product_reference": "apache2-event-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-event-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-event-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-example-pages-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-example-pages-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x"
},
"product_reference": "apache2-example-pages-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-example-pages-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-example-pages-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-prefork-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-prefork-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x"
},
"product_reference": "apache2-prefork-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-prefork-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-prefork-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-utils-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-utils-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x"
},
"product_reference": "apache2-utils-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-utils-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-utils-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.23-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64"
},
"product_reference": "apache2-worker-2.4.23-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.23-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le"
},
"product_reference": "apache2-worker-2.4.23-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.23-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x"
},
"product_reference": "apache2-worker-2.4.23-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apache2-worker-2.4.23-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
},
"product_reference": "apache2-worker-2.4.23-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-0023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0023"
}
],
"notes": [
{
"category": "general",
"text": "The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apache APR-util before 1.3.5 allows remote attackers to cause a denial of service (daemon crash) via crafted input involving (1) a .htaccess file used with the Apache HTTP Server, (2) the SVNMasterURI directive in the mod_dav_svn module in the Apache HTTP Server, (3) the mod_apreq2 module for the Apache HTTP Server, or (4) an application that uses the libapreq2 library, which triggers a heap-based buffer underflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0023",
"url": "https://www.suse.com/security/cve/CVE-2009-0023"
},
{
"category": "external",
"summary": "SUSE Bug 510301 for CVE-2009-0023",
"url": "https://bugzilla.suse.com/510301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-0023"
},
{
"cve": "CVE-2009-1191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1191"
}
],
"notes": [
{
"category": "general",
"text": "mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1191",
"url": "https://www.suse.com/security/cve/CVE-2009-1191"
},
{
"category": "external",
"summary": "SUSE Bug 521943 for CVE-2009-1191",
"url": "https://bugzilla.suse.com/521943"
},
{
"category": "external",
"summary": "SUSE Bug 539571 for CVE-2009-1191",
"url": "https://bugzilla.suse.com/539571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1191"
},
{
"cve": "CVE-2009-1195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1195"
}
],
"notes": [
{
"category": "general",
"text": "The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Options +IncludesNOEXEC in a .htaccess file, and then inserting an exec element in a .shtml file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1195",
"url": "https://www.suse.com/security/cve/CVE-2009-1195"
},
{
"category": "external",
"summary": "SUSE Bug 512583 for CVE-2009-1195",
"url": "https://bugzilla.suse.com/512583"
},
{
"category": "external",
"summary": "SUSE Bug 513080 for CVE-2009-1195",
"url": "https://bugzilla.suse.com/513080"
},
{
"category": "external",
"summary": "SUSE Bug 539571 for CVE-2009-1195",
"url": "https://bugzilla.suse.com/539571"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1195"
},
{
"cve": "CVE-2009-1890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1890"
}
],
"notes": [
{
"category": "general",
"text": "The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1890",
"url": "https://www.suse.com/security/cve/CVE-2009-1890"
},
{
"category": "external",
"summary": "SUSE Bug 519194 for CVE-2009-1890",
"url": "https://bugzilla.suse.com/519194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-1890"
},
{
"cve": "CVE-2009-1891",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1891"
}
],
"notes": [
{
"category": "general",
"text": "The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1891",
"url": "https://www.suse.com/security/cve/CVE-2009-1891"
},
{
"category": "external",
"summary": "SUSE Bug 521906 for CVE-2009-1891",
"url": "https://bugzilla.suse.com/521906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-1891"
},
{
"cve": "CVE-2009-1955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1955"
}
],
"notes": [
{
"category": "general",
"text": "The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as used in the mod_dav and mod_dav_svn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document containing a large number of nested entity references, as demonstrated by a PROPFIND request, a similar issue to CVE-2003-1564.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1955",
"url": "https://www.suse.com/security/cve/CVE-2009-1955"
},
{
"category": "external",
"summary": "SUSE Bug 509825 for CVE-2009-1955",
"url": "https://bugzilla.suse.com/509825"
},
{
"category": "external",
"summary": "SUSE Bug 510301 for CVE-2009-1955",
"url": "https://bugzilla.suse.com/510301"
},
{
"category": "external",
"summary": "SUSE Bug 529591 for CVE-2009-1955",
"url": "https://bugzilla.suse.com/529591"
},
{
"category": "external",
"summary": "SUSE Bug 992541 for CVE-2009-1955",
"url": "https://bugzilla.suse.com/992541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-1955"
},
{
"cve": "CVE-2009-1956",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1956"
}
],
"notes": [
{
"category": "general",
"text": "Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (application crash) via crafted input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1956",
"url": "https://www.suse.com/security/cve/CVE-2009-1956"
},
{
"category": "external",
"summary": "SUSE Bug 510301 for CVE-2009-1956",
"url": "https://bugzilla.suse.com/510301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1956"
},
{
"cve": "CVE-2009-2412",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-2412"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger crafted calls to the (1) allocator_alloc or (2) apr_palloc function in memory/unix/apr_pools.c in APR; or crafted calls to the (3) apr_rmm_malloc, (4) apr_rmm_calloc, or (5) apr_rmm_realloc function in misc/apr_rmm.c in APR-util; leading to buffer overflows. NOTE: some of these details are obtained from third party information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-2412",
"url": "https://www.suse.com/security/cve/CVE-2009-2412"
},
{
"category": "external",
"summary": "SUSE Bug 528714 for CVE-2009-2412",
"url": "https://bugzilla.suse.com/528714"
},
{
"category": "external",
"summary": "SUSE Bug 529591 for CVE-2009-2412",
"url": "https://bugzilla.suse.com/529591"
},
{
"category": "external",
"summary": "SUSE Bug 802057 for CVE-2009-2412",
"url": "https://bugzilla.suse.com/802057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2009-2412"
},
{
"cve": "CVE-2009-2699",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-2699"
}
],
"notes": [
{
"category": "general",
"text": "The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable Runtime (APR) library before 1.3.9, as used in the Apache HTTP Server before 2.2.14 and other products, does not properly handle errors, which allows remote attackers to cause a denial of service (daemon hang) via unspecified HTTP requests, related to the prefork and event MPMs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-2699",
"url": "https://www.suse.com/security/cve/CVE-2009-2699"
},
{
"category": "external",
"summary": "SUSE Bug 1078450 for CVE-2009-2699",
"url": "https://bugzilla.suse.com/1078450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-2699"
},
{
"cve": "CVE-2009-3094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3094"
}
],
"notes": [
{
"category": "general",
"text": "The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3094",
"url": "https://www.suse.com/security/cve/CVE-2009-3094"
},
{
"category": "external",
"summary": "SUSE Bug 538322 for CVE-2009-3094",
"url": "https://bugzilla.suse.com/538322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-3094"
},
{
"cve": "CVE-2009-3095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3095"
}
],
"notes": [
{
"category": "general",
"text": "The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3095",
"url": "https://www.suse.com/security/cve/CVE-2009-3095"
},
{
"category": "external",
"summary": "SUSE Bug 538322 for CVE-2009-3095",
"url": "https://bugzilla.suse.com/538322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-3095"
},
{
"cve": "CVE-2009-3555",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3555"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL, by sending an unauthenticated request that is processed retroactively by a server in a post-renegotiation context, related to a \"plaintext injection\" attack, aka the \"Project Mogul\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3555",
"url": "https://www.suse.com/security/cve/CVE-2009-3555"
},
{
"category": "external",
"summary": "SUSE Bug 1077582 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/1077582"
},
{
"category": "external",
"summary": "SUSE Bug 459468 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/459468"
},
{
"category": "external",
"summary": "SUSE Bug 552497 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/552497"
},
{
"category": "external",
"summary": "SUSE Bug 553641 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/553641"
},
{
"category": "external",
"summary": "SUSE Bug 554069 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/554069"
},
{
"category": "external",
"summary": "SUSE Bug 554084 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/554084"
},
{
"category": "external",
"summary": "SUSE Bug 554085 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/554085"
},
{
"category": "external",
"summary": "SUSE Bug 555177 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/555177"
},
{
"category": "external",
"summary": "SUSE Bug 557168 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/557168"
},
{
"category": "external",
"summary": "SUSE Bug 564507 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/564507"
},
{
"category": "external",
"summary": "SUSE Bug 566041 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/566041"
},
{
"category": "external",
"summary": "SUSE Bug 584292 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/584292"
},
{
"category": "external",
"summary": "SUSE Bug 586567 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/586567"
},
{
"category": "external",
"summary": "SUSE Bug 588996 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/588996"
},
{
"category": "external",
"summary": "SUSE Bug 590826 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/590826"
},
{
"category": "external",
"summary": "SUSE Bug 592589 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/592589"
},
{
"category": "external",
"summary": "SUSE Bug 594415 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/594415"
},
{
"category": "external",
"summary": "SUSE Bug 604782 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/604782"
},
{
"category": "external",
"summary": "SUSE Bug 614753 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/614753"
},
{
"category": "external",
"summary": "SUSE Bug 622073 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/622073"
},
{
"category": "external",
"summary": "SUSE Bug 623905 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/623905"
},
{
"category": "external",
"summary": "SUSE Bug 629905 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/629905"
},
{
"category": "external",
"summary": "SUSE Bug 642531 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/642531"
},
{
"category": "external",
"summary": "SUSE Bug 646073 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/646073"
},
{
"category": "external",
"summary": "SUSE Bug 646906 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/646906"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/648140"
},
{
"category": "external",
"summary": "SUSE Bug 648950 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/648950"
},
{
"category": "external",
"summary": "SUSE Bug 659926 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/659926"
},
{
"category": "external",
"summary": "SUSE Bug 670152 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/670152"
},
{
"category": "external",
"summary": "SUSE Bug 704832 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/704832"
},
{
"category": "external",
"summary": "SUSE Bug 728876 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/728876"
},
{
"category": "external",
"summary": "SUSE Bug 729181 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/729181"
},
{
"category": "external",
"summary": "SUSE Bug 753357 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/753357"
},
{
"category": "external",
"summary": "SUSE Bug 791794 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/791794"
},
{
"category": "external",
"summary": "SUSE Bug 799454 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/799454"
},
{
"category": "external",
"summary": "SUSE Bug 815621 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/815621"
},
{
"category": "external",
"summary": "SUSE Bug 905347 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/905347"
},
{
"category": "external",
"summary": "SUSE Bug 979060 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/979060"
},
{
"category": "external",
"summary": "SUSE Bug 986238 for CVE-2009-3555",
"url": "https://bugzilla.suse.com/986238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-3555"
},
{
"cve": "CVE-2009-3560",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3560"
}
],
"notes": [
{
"category": "general",
"text": "The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3560",
"url": "https://www.suse.com/security/cve/CVE-2009-3560"
},
{
"category": "external",
"summary": "SUSE Bug 550666 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/550666"
},
{
"category": "external",
"summary": "SUSE Bug 558892 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/558892"
},
{
"category": "external",
"summary": "SUSE Bug 561561 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/561561"
},
{
"category": "external",
"summary": "SUSE Bug 581162 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/581162"
},
{
"category": "external",
"summary": "SUSE Bug 581765 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/581765"
},
{
"category": "external",
"summary": "SUSE Bug 611931 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/611931"
},
{
"category": "external",
"summary": "SUSE Bug 694595 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/694595"
},
{
"category": "external",
"summary": "SUSE Bug 725950 for CVE-2009-3560",
"url": "https://bugzilla.suse.com/725950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-3560"
},
{
"cve": "CVE-2009-3720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-3720"
}
],
"notes": [
{
"category": "general",
"text": "The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-3720",
"url": "https://www.suse.com/security/cve/CVE-2009-3720"
},
{
"category": "external",
"summary": "SUSE Bug 534721 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/534721"
},
{
"category": "external",
"summary": "SUSE Bug 550664 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/550664"
},
{
"category": "external",
"summary": "SUSE Bug 550666 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/550666"
},
{
"category": "external",
"summary": "SUSE Bug 558892 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/558892"
},
{
"category": "external",
"summary": "SUSE Bug 561561 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/561561"
},
{
"category": "external",
"summary": "SUSE Bug 581162 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/581162"
},
{
"category": "external",
"summary": "SUSE Bug 581765 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/581765"
},
{
"category": "external",
"summary": "SUSE Bug 611931 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/611931"
},
{
"category": "external",
"summary": "SUSE Bug 725950 for CVE-2009-3720",
"url": "https://bugzilla.suse.com/725950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-3720"
},
{
"cve": "CVE-2010-0408",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0408"
}
],
"notes": [
{
"category": "general",
"text": "The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted request, related to use of a 500 error code instead of the appropriate 400 error code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0408",
"url": "https://www.suse.com/security/cve/CVE-2010-0408"
},
{
"category": "external",
"summary": "SUSE Bug 586572 for CVE-2010-0408",
"url": "https://bugzilla.suse.com/586572"
},
{
"category": "external",
"summary": "SUSE Bug 601151 for CVE-2010-0408",
"url": "https://bugzilla.suse.com/601151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0408"
},
{
"cve": "CVE-2010-0425",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0425"
}
],
"notes": [
{
"category": "general",
"text": "modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and \"orphaned callback pointers.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0425",
"url": "https://www.suse.com/security/cve/CVE-2010-0425"
},
{
"category": "external",
"summary": "SUSE Bug 1078450 for CVE-2010-0425",
"url": "https://bugzilla.suse.com/1078450"
},
{
"category": "external",
"summary": "SUSE Bug 586572 for CVE-2010-0425",
"url": "https://bugzilla.suse.com/586572"
},
{
"category": "external",
"summary": "SUSE Bug 601151 for CVE-2010-0425",
"url": "https://bugzilla.suse.com/601151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2010-0425"
},
{
"cve": "CVE-2010-0434",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-0434"
}
],
"notes": [
{
"category": "general",
"text": "The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-0434",
"url": "https://www.suse.com/security/cve/CVE-2010-0434"
},
{
"category": "external",
"summary": "SUSE Bug 586572 for CVE-2010-0434",
"url": "https://bugzilla.suse.com/586572"
},
{
"category": "external",
"summary": "SUSE Bug 601151 for CVE-2010-0434",
"url": "https://bugzilla.suse.com/601151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-0434"
},
{
"cve": "CVE-2010-1452",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1452"
}
],
"notes": [
{
"category": "general",
"text": "The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1452",
"url": "https://www.suse.com/security/cve/CVE-2010-1452"
},
{
"category": "external",
"summary": "SUSE Bug 627030 for CVE-2010-1452",
"url": "https://bugzilla.suse.com/627030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1452"
},
{
"cve": "CVE-2010-1623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1623"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1623",
"url": "https://www.suse.com/security/cve/CVE-2010-1623"
},
{
"category": "external",
"summary": "SUSE Bug 650435 for CVE-2010-1623",
"url": "https://bugzilla.suse.com/650435"
},
{
"category": "external",
"summary": "SUSE Bug 693778 for CVE-2010-1623",
"url": "https://bugzilla.suse.com/693778"
},
{
"category": "external",
"summary": "SUSE Bug 725950 for CVE-2010-1623",
"url": "https://bugzilla.suse.com/725950"
},
{
"category": "external",
"summary": "SUSE Bug 997229 for CVE-2010-1623",
"url": "https://bugzilla.suse.com/997229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1623"
},
{
"cve": "CVE-2010-2068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2068"
}
],
"notes": [
{
"category": "general",
"text": "mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2068",
"url": "https://www.suse.com/security/cve/CVE-2010-2068"
},
{
"category": "external",
"summary": "SUSE Bug 627030 for CVE-2010-2068",
"url": "https://bugzilla.suse.com/627030"
},
{
"category": "external",
"summary": "SUSE Bug 627387 for CVE-2010-2068",
"url": "https://bugzilla.suse.com/627387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-2068"
},
{
"cve": "CVE-2011-1176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-1176"
}
],
"notes": [
{
"category": "general",
"text": "The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-1176",
"url": "https://www.suse.com/security/cve/CVE-2011-1176"
},
{
"category": "external",
"summary": "SUSE Bug 681176 for CVE-2011-1176",
"url": "https://bugzilla.suse.com/681176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-1176"
},
{
"cve": "CVE-2011-3192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3192"
}
],
"notes": [
{
"category": "general",
"text": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3192",
"url": "https://www.suse.com/security/cve/CVE-2011-3192"
},
{
"category": "external",
"summary": "SUSE Bug 713966 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/713966"
},
{
"category": "external",
"summary": "SUSE Bug 714306 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/714306"
},
{
"category": "external",
"summary": "SUSE Bug 716634 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/716634"
},
{
"category": "external",
"summary": "SUSE Bug 718106 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/718106"
},
{
"category": "external",
"summary": "SUSE Bug 722545 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/722545"
},
{
"category": "external",
"summary": "SUSE Bug 726139 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/726139"
},
{
"category": "external",
"summary": "SUSE Bug 732051 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/732051"
},
{
"category": "external",
"summary": "SUSE Bug 983778 for CVE-2011-3192",
"url": "https://bugzilla.suse.com/983778"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2011-3192"
},
{
"cve": "CVE-2011-3368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3368"
}
],
"notes": [
{
"category": "general",
"text": "The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3368",
"url": "https://www.suse.com/security/cve/CVE-2011-3368"
},
{
"category": "external",
"summary": "SUSE Bug 722545 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/722545"
},
{
"category": "external",
"summary": "SUSE Bug 723308 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/723308"
},
{
"category": "external",
"summary": "SUSE Bug 728876 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/728876"
},
{
"category": "external",
"summary": "SUSE Bug 729181 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/729181"
},
{
"category": "external",
"summary": "SUSE Bug 754831 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/754831"
},
{
"category": "external",
"summary": "SUSE Bug 791794 for CVE-2011-3368",
"url": "https://bugzilla.suse.com/791794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3368"
},
{
"cve": "CVE-2011-3607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-3607"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, leading to a heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-3607",
"url": "https://www.suse.com/security/cve/CVE-2011-3607"
},
{
"category": "external",
"summary": "SUSE Bug 728876 for CVE-2011-3607",
"url": "https://bugzilla.suse.com/728876"
},
{
"category": "external",
"summary": "SUSE Bug 729181 for CVE-2011-3607",
"url": "https://bugzilla.suse.com/729181"
},
{
"category": "external",
"summary": "SUSE Bug 729183 for CVE-2011-3607",
"url": "https://bugzilla.suse.com/729183"
},
{
"category": "external",
"summary": "SUSE Bug 806721 for CVE-2011-3607",
"url": "https://bugzilla.suse.com/806721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-3607"
},
{
"cve": "CVE-2011-4317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4317"
}
],
"notes": [
{
"category": "general",
"text": "The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an @ (at sign) character and a : (colon) character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4317",
"url": "https://www.suse.com/security/cve/CVE-2011-4317"
},
{
"category": "external",
"summary": "SUSE Bug 722545 for CVE-2011-4317",
"url": "https://bugzilla.suse.com/722545"
},
{
"category": "external",
"summary": "SUSE Bug 728876 for CVE-2011-4317",
"url": "https://bugzilla.suse.com/728876"
},
{
"category": "external",
"summary": "SUSE Bug 729181 for CVE-2011-4317",
"url": "https://bugzilla.suse.com/729181"
},
{
"category": "external",
"summary": "SUSE Bug 791794 for CVE-2011-4317",
"url": "https://bugzilla.suse.com/791794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4317"
},
{
"cve": "CVE-2012-0021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0021"
}
],
"notes": [
{
"category": "general",
"text": "The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %{}C format string, which allows remote attackers to cause a denial of service (daemon crash) via a cookie that lacks both a name and a value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0021",
"url": "https://www.suse.com/security/cve/CVE-2012-0021"
},
{
"category": "external",
"summary": "SUSE Bug 1078450 for CVE-2012-0021",
"url": "https://bugzilla.suse.com/1078450"
},
{
"category": "external",
"summary": "SUSE Bug 743744 for CVE-2012-0021",
"url": "https://bugzilla.suse.com/743744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0021"
},
{
"cve": "CVE-2012-0031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0031"
}
],
"notes": [
{
"category": "general",
"text": "scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial of service (daemon crash during shutdown) or possibly have unspecified other impact by modifying a certain type field within a scoreboard shared memory segment, leading to an invalid call to the free function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0031",
"url": "https://www.suse.com/security/cve/CVE-2012-0031"
},
{
"category": "external",
"summary": "SUSE Bug 741243 for CVE-2012-0031",
"url": "https://bugzilla.suse.com/741243"
},
{
"category": "external",
"summary": "SUSE Bug 806721 for CVE-2012-0031",
"url": "https://bugzilla.suse.com/806721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0031"
},
{
"cve": "CVE-2012-0053",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0053"
}
],
"notes": [
{
"category": "general",
"text": "protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0053",
"url": "https://www.suse.com/security/cve/CVE-2012-0053"
},
{
"category": "external",
"summary": "SUSE Bug 743743 for CVE-2012-0053",
"url": "https://bugzilla.suse.com/743743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-0053"
},
{
"cve": "CVE-2012-2687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2687"
}
],
"notes": [
{
"category": "general",
"text": "Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in mod_negotiation.c in the mod_negotiation module in the Apache HTTP Server 2.4.x before 2.4.3, when the MultiViews option is enabled, allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is not properly handled during construction of a variant list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2687",
"url": "https://www.suse.com/security/cve/CVE-2012-2687"
},
{
"category": "external",
"summary": "SUSE Bug 777260 for CVE-2012-2687",
"url": "https://bugzilla.suse.com/777260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-2687"
},
{
"cve": "CVE-2012-3499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3499"
}
],
"notes": [
{
"category": "general",
"text": "Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3499",
"url": "https://www.suse.com/security/cve/CVE-2012-3499"
},
{
"category": "external",
"summary": "SUSE Bug 806458 for CVE-2012-3499",
"url": "https://bugzilla.suse.com/806458"
},
{
"category": "external",
"summary": "SUSE Bug 807511 for CVE-2012-3499",
"url": "https://bugzilla.suse.com/807511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3499"
},
{
"cve": "CVE-2012-3502",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3502"
}
],
"notes": [
{
"category": "general",
"text": "The proxy functionality in (1) mod_proxy_ajp.c in the mod_proxy_ajp module and (2) mod_proxy_http.c in the mod_proxy_http module in the Apache HTTP Server 2.4.x before 2.4.3 does not properly determine the situations that require closing a back-end connection, which allows remote attackers to obtain sensitive information in opportunistic circumstances by reading a response that was intended for a different client.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3502",
"url": "https://www.suse.com/security/cve/CVE-2012-3502"
},
{
"category": "external",
"summary": "SUSE Bug 777119 for CVE-2012-3502",
"url": "https://bugzilla.suse.com/777119"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3502"
},
{
"cve": "CVE-2013-1896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1896"
}
],
"notes": [
{
"category": "general",
"text": "mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which the URI is configured for handling by the mod_dav_svn module, but a certain href attribute in XML data refers to a non-DAV URI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1896",
"url": "https://www.suse.com/security/cve/CVE-2013-1896"
},
{
"category": "external",
"summary": "SUSE Bug 829056 for CVE-2013-1896",
"url": "https://bugzilla.suse.com/829056"
},
{
"category": "external",
"summary": "SUSE Bug 829057 for CVE-2013-1896",
"url": "https://bugzilla.suse.com/829057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-1896"
},
{
"cve": "CVE-2013-2249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-2249"
}
],
"notes": [
{
"category": "general",
"text": "mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-2249",
"url": "https://www.suse.com/security/cve/CVE-2013-2249"
},
{
"category": "external",
"summary": "SUSE Bug 831113 for CVE-2013-2249",
"url": "https://bugzilla.suse.com/831113"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-2249"
},
{
"cve": "CVE-2013-5704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-5704"
}
],
"notes": [
{
"category": "general",
"text": "The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass \"RequestHeader unset\" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states \"this is not a security issue in httpd as such.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-5704",
"url": "https://www.suse.com/security/cve/CVE-2013-5704"
},
{
"category": "external",
"summary": "SUSE Bug 871310 for CVE-2013-5704",
"url": "https://bugzilla.suse.com/871310"
},
{
"category": "external",
"summary": "SUSE Bug 914535 for CVE-2013-5704",
"url": "https://bugzilla.suse.com/914535"
},
{
"category": "external",
"summary": "SUSE Bug 930944 for CVE-2013-5704",
"url": "https://bugzilla.suse.com/930944"
},
{
"category": "external",
"summary": "SUSE Bug 938728 for CVE-2013-5704",
"url": "https://bugzilla.suse.com/938728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-5704"
},
{
"cve": "CVE-2013-6438",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-6438"
}
],
"notes": [
{
"category": "general",
"text": "The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service (daemon crash) via a crafted DAV WRITE request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-6438",
"url": "https://www.suse.com/security/cve/CVE-2013-6438"
},
{
"category": "external",
"summary": "SUSE Bug 869105 for CVE-2013-6438",
"url": "https://bugzilla.suse.com/869105"
},
{
"category": "external",
"summary": "SUSE Bug 869106 for CVE-2013-6438",
"url": "https://bugzilla.suse.com/869106"
},
{
"category": "external",
"summary": "SUSE Bug 887765 for CVE-2013-6438",
"url": "https://bugzilla.suse.com/887765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-6438"
},
{
"cve": "CVE-2014-0098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0098"
}
],
"notes": [
{
"category": "general",
"text": "The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0098",
"url": "https://www.suse.com/security/cve/CVE-2014-0098"
},
{
"category": "external",
"summary": "SUSE Bug 869106 for CVE-2014-0098",
"url": "https://bugzilla.suse.com/869106"
},
{
"category": "external",
"summary": "SUSE Bug 887765 for CVE-2014-0098",
"url": "https://bugzilla.suse.com/887765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0098"
},
{
"cve": "CVE-2014-0117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0117"
}
],
"notes": [
{
"category": "general",
"text": "The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0117",
"url": "https://www.suse.com/security/cve/CVE-2014-0117"
},
{
"category": "external",
"summary": "SUSE Bug 887767 for CVE-2014-0117",
"url": "https://bugzilla.suse.com/887767"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0117"
},
{
"cve": "CVE-2014-0118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0118"
}
],
"notes": [
{
"category": "general",
"text": "The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0118",
"url": "https://www.suse.com/security/cve/CVE-2014-0118"
},
{
"category": "external",
"summary": "SUSE Bug 1078450 for CVE-2014-0118",
"url": "https://bugzilla.suse.com/1078450"
},
{
"category": "external",
"summary": "SUSE Bug 887769 for CVE-2014-0118",
"url": "https://bugzilla.suse.com/887769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0118"
},
{
"cve": "CVE-2014-0226",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0226"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the mod_status module in the Apache HTTP Server before 2.4.10 allows remote attackers to cause a denial of service (heap-based buffer overflow), or possibly obtain sensitive credential information or execute arbitrary code, via a crafted request that triggers improper scoreboard handling within the status_handler function in modules/generators/mod_status.c and the lua_ap_scoreboard_worker function in modules/lua/lua_request.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0226",
"url": "https://www.suse.com/security/cve/CVE-2014-0226"
},
{
"category": "external",
"summary": "SUSE Bug 887765 for CVE-2014-0226",
"url": "https://bugzilla.suse.com/887765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0226"
},
{
"cve": "CVE-2014-0231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0231"
}
],
"notes": [
{
"category": "general",
"text": "The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0231",
"url": "https://www.suse.com/security/cve/CVE-2014-0231"
},
{
"category": "external",
"summary": "SUSE Bug 887768 for CVE-2014-0231",
"url": "https://bugzilla.suse.com/887768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0231"
},
{
"cve": "CVE-2014-3523",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3523"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the winnt_accept function in server/mpm/winnt/child.c in the WinNT MPM in the Apache HTTP Server 2.4.x before 2.4.10 on Windows, when the default AcceptFilter is enabled, allows remote attackers to cause a denial of service (memory consumption) via crafted requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3523",
"url": "https://www.suse.com/security/cve/CVE-2014-3523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3523"
},
{
"cve": "CVE-2014-3581",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3581"
}
],
"notes": [
{
"category": "general",
"text": "The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP Content-Type header.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3581",
"url": "https://www.suse.com/security/cve/CVE-2014-3581"
},
{
"category": "external",
"summary": "SUSE Bug 899836 for CVE-2014-3581",
"url": "https://bugzilla.suse.com/899836"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3581"
},
{
"cve": "CVE-2014-3583",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3583"
}
],
"notes": [
{
"category": "general",
"text": "The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon crash) via long response headers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3583",
"url": "https://www.suse.com/security/cve/CVE-2014-3583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3583"
},
{
"cve": "CVE-2014-8109",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8109"
}
],
"notes": [
{
"category": "general",
"text": "mod_lua.c in the mod_lua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging multiple Require directives, as demonstrated by a configuration that specifies authorization for one group to access a certain directory, and authorization for a second group to access a second directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8109",
"url": "https://www.suse.com/security/cve/CVE-2014-8109"
},
{
"category": "external",
"summary": "SUSE Bug 909715 for CVE-2014-8109",
"url": "https://bugzilla.suse.com/909715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8109"
},
{
"cve": "CVE-2015-0228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0228"
}
],
"notes": [
{
"category": "general",
"text": "The lua_websocket_read function in lua_request.c in the mod_lua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service (child-process crash) by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0228",
"url": "https://www.suse.com/security/cve/CVE-2015-0228"
},
{
"category": "external",
"summary": "SUSE Bug 918352 for CVE-2015-0228",
"url": "https://bugzilla.suse.com/918352"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0228"
},
{
"cve": "CVE-2015-0253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0253"
}
],
"notes": [
{
"category": "general",
"text": "The read_request_line function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) by sending a request that lacks a method to an installation that enables the INCLUDES filter and has an ErrorDocument 400 directive specifying a local URI.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0253",
"url": "https://www.suse.com/security/cve/CVE-2015-0253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0253"
},
{
"cve": "CVE-2015-4000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-4000"
}
],
"notes": [
{
"category": "general",
"text": "The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the \"Logjam\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-4000",
"url": "https://www.suse.com/security/cve/CVE-2015-4000"
},
{
"category": "external",
"summary": "SUSE Bug 1074631 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1074631"
},
{
"category": "external",
"summary": "SUSE Bug 1211968 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/1211968"
},
{
"category": "external",
"summary": "SUSE Bug 931600 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931600"
},
{
"category": "external",
"summary": "SUSE Bug 931698 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931698"
},
{
"category": "external",
"summary": "SUSE Bug 931723 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931723"
},
{
"category": "external",
"summary": "SUSE Bug 931845 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/931845"
},
{
"category": "external",
"summary": "SUSE Bug 932026 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932026"
},
{
"category": "external",
"summary": "SUSE Bug 932483 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/932483"
},
{
"category": "external",
"summary": "SUSE Bug 934789 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/934789"
},
{
"category": "external",
"summary": "SUSE Bug 935033 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935033"
},
{
"category": "external",
"summary": "SUSE Bug 935540 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935540"
},
{
"category": "external",
"summary": "SUSE Bug 935979 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/935979"
},
{
"category": "external",
"summary": "SUSE Bug 937202 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937202"
},
{
"category": "external",
"summary": "SUSE Bug 937766 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/937766"
},
{
"category": "external",
"summary": "SUSE Bug 938248 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938248"
},
{
"category": "external",
"summary": "SUSE Bug 938432 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938432"
},
{
"category": "external",
"summary": "SUSE Bug 938895 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938895"
},
{
"category": "external",
"summary": "SUSE Bug 938905 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938905"
},
{
"category": "external",
"summary": "SUSE Bug 938906 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938906"
},
{
"category": "external",
"summary": "SUSE Bug 938913 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938913"
},
{
"category": "external",
"summary": "SUSE Bug 938945 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/938945"
},
{
"category": "external",
"summary": "SUSE Bug 943664 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/943664"
},
{
"category": "external",
"summary": "SUSE Bug 944729 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/944729"
},
{
"category": "external",
"summary": "SUSE Bug 945582 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/945582"
},
{
"category": "external",
"summary": "SUSE Bug 955589 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/955589"
},
{
"category": "external",
"summary": "SUSE Bug 980406 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/980406"
},
{
"category": "external",
"summary": "SUSE Bug 990592 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/990592"
},
{
"category": "external",
"summary": "SUSE Bug 994144 for CVE-2015-4000",
"url": "https://bugzilla.suse.com/994144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-4000"
},
{
"cve": "CVE-2016-4979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4979"
}
],
"notes": [
{
"category": "general",
"text": "The Apache HTTP Server 2.4.18 through 2.4.20, when mod_http2 and mod_ssl are enabled, does not properly recognize the \"SSLVerifyClient require\" directive for HTTP/2 request authorization, which allows remote attackers to bypass intended access restrictions by leveraging the ability to send multiple requests over a single connection and aborting a renegotiation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4979",
"url": "https://www.suse.com/security/cve/CVE-2016-4979"
},
{
"category": "external",
"summary": "SUSE Bug 987365 for CVE-2016-4979",
"url": "https://bugzilla.suse.com/987365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:apache2-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-devel-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-doc-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-event-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-example-pages-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-prefork-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-utils-2.4.23-4.1.x86_64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.aarch64",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.ppc64le",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.s390x",
"openSUSE Tumbleweed:apache2-worker-2.4.23-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-4979"
}
]
}
GSD-2011-3192
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2011-3192",
"description": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"id": "GSD-2011-3192",
"references": [
"https://www.suse.com/security/cve/CVE-2011-3192.html",
"https://www.debian.org/security/2011/dsa-2298",
"https://access.redhat.com/errata/RHSA-2011:1369",
"https://access.redhat.com/errata/RHSA-2011:1330",
"https://access.redhat.com/errata/RHSA-2011:1329",
"https://access.redhat.com/errata/RHSA-2011:1300",
"https://access.redhat.com/errata/RHSA-2011:1294",
"https://access.redhat.com/errata/RHSA-2011:1245",
"https://alas.aws.amazon.com/cve/html/CVE-2011-3192.html",
"https://linux.oracle.com/cve/CVE-2011-3192.html",
"https://packetstormsecurity.com/files/cve/CVE-2011-3192"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2011-3192"
],
"details": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"id": "GSD-2011-3192",
"modified": "2023-12-13T01:19:10.094148Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-3192",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "45606",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45606"
},
{
"name": "RHSA-2011:1369",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"name": "RHSA-2011:1329",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"name": "HPSBUX02707",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "SUSE-SU-2011:1010",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"name": "SSRT100966",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "openSUSE-SU-2011:0993",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"name": "http://www.gossamer-threads.com/lists/apache/dev/401638",
"refsource": "CONFIRM",
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"name": "1025960",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025960"
},
{
"name": "[dev] 20110823 Re: DoS with mod_deflate \u0026 range requests",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=732928",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"name": "SSRT100624",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "17696",
"refsource": "EXPLOIT-DB",
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"name": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714",
"refsource": "CONFIRM",
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"name": "HPSBUX02702",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "46000",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46000"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"name": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011",
"refsource": "CONFIRM",
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"name": "HPSBOV02822",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "SSRT100619",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "20110830 Apache HTTPd Range Header Denial of Service Vulnerability",
"refsource": "CISCO",
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"name": "USN-1199-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"name": "MDVSA-2011:130",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"name": "49303",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/49303"
},
{
"name": "74721",
"refsource": "OSVDB",
"url": "http://osvdb.org/74721"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "20110824 Re: Apache Killer",
"refsource": "FULLDISC",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"name": "APPLE-SA-2011-10-12-3",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "oval:org.mitre.oval:def:14824",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"name": "[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \\(CVE-2011-3192\\)",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD@minotaur.apache.org%3e"
},
{
"name": "RHSA-2011:1330",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"name": "apache-http-byterange-dos(69396)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"name": "46126",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46126"
},
{
"name": "RHSA-2011:1245",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"name": "oval:org.mitre.oval:def:18827",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"name": "http://www.apache.org/dist/httpd/Announcement2.2.html",
"refsource": "CONFIRM",
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"name": "SSRT100626",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"name": "46125",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/46125"
},
{
"name": "HPSBMU02766",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "VU#405811",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"name": "20110820 Apache Killer",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"name": "SSRT100852",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "http://support.apple.com/kb/HT5002",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "SUSE-SU-2011:1216",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"name": "oval:org.mitre.oval:def:14762",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"name": "SUSE-SU-2011:1007",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"name": "HPSBMU02776",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "SUSE-SU-2011:1000",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"name": "RHSA-2011:1294",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"name": "MDVSA-2013:150",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"name": "SUSE-SU-2011:1229",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"name": "HPSBMU02704",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "RHSA-2011:1300",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"name": "SSRT100606",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "45937",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45937"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [7/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.2.20",
"versionStartIncluding": "2.2.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.0.65",
"versionStartIncluding": "2.0.35",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-3192"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \\(CVE-2011-3192\\)",
"refsource": "MLIST",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD@minotaur.apache.org%3e"
},
{
"name": "17696",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"name": "45606",
"refsource": "SECUNIA",
"tags": [
"Not Applicable",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/45606"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=732928",
"refsource": "CONFIRM",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"name": "20110824 Re: Apache Killer",
"refsource": "FULLDISC",
"tags": [
"Broken Link"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"name": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714",
"refsource": "CONFIRM",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"name": "http://www.gossamer-threads.com/lists/apache/dev/401638",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"name": "1025960",
"refsource": "SECTRACK",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1025960"
},
{
"name": "[dev] 20110823 Re: DoS with mod_deflate \u0026 range requests",
"refsource": "MLIST",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e"
},
{
"name": "20110820 Apache Killer",
"refsource": "FULLDISC",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"name": "49303",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/49303"
},
{
"name": "74721",
"refsource": "OSVDB",
"tags": [
"Broken Link"
],
"url": "http://osvdb.org/74721"
},
{
"name": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011",
"refsource": "CONFIRM",
"tags": [
"Broken Link"
],
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"name": "USN-1199-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1199-1"
},
{
"name": "RHSA-2011:1294",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"name": "http://www.apache.org/dist/httpd/Announcement2.2.html",
"refsource": "CONFIRM",
"tags": [
"Broken Link"
],
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"name": "46000",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46000"
},
{
"name": "MDVSA-2011:130",
"refsource": "MANDRIVA",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"name": "20110830 Apache HTTPd Range Header Denial of Service Vulnerability",
"refsource": "CISCO",
"tags": [
"Third Party Advisory"
],
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"name": "45937",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/45937"
},
{
"name": "RHSA-2011:1245",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"name": "RHSA-2011:1300",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"name": "46126",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46126"
},
{
"name": "VU#405811",
"refsource": "CERT-VN",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"name": "RHSA-2011:1330",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"name": "46125",
"refsource": "SECUNIA",
"tags": [
"Not Applicable"
],
"url": "http://secunia.com/advisories/46125"
},
{
"name": "RHSA-2011:1329",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"name": "APPLE-SA-2011-10-12-3",
"refsource": "APPLE",
"tags": [
"Broken Link"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"name": "http://support.apple.com/kb/HT5002",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "SUSE-SU-2011:1000",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"name": "openSUSE-SU-2011:0993",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"name": "HPSBUX02702",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"name": "SUSE-SU-2011:1010",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"name": "HPSBUX02707",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"name": "SUSE-SU-2011:1007",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"name": "RHSA-2011:1369",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"name": "SSRT100619",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"name": "SUSE-SU-2011:1216",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"name": "SUSE-SU-2011:1229",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"name": "SSRT100966",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"name": "MDVSA-2013:150",
"refsource": "MANDRIVA",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"name": "SSRT100852",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"name": "SSRT100624",
"refsource": "HP",
"tags": [
"Issue Tracking",
"Mailing List",
"Third Party Advisory"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"name": "apache-http-byterange-dos(69396)",
"refsource": "XF",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"name": "oval:org.mitre.oval:def:18827",
"refsource": "OVAL",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"name": "oval:org.mitre.oval:def:14824",
"refsource": "OVAL",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"name": "oval:org.mitre.oval:def:14762",
"refsource": "OVAL",
"tags": [
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"name": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [7/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2022-09-19T19:49Z",
"publishedDate": "2011-08-29T15:55Z"
}
}
}
VAR-201108-0132
Vulnerability from variot - Updated: 2024-07-23 19:34The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086. Apache HTTPD server contains a denial-of-service vulnerability in the way multiple overlapping ranges are handled. Both the 'Range' header and the 'Range-Request' header are vulnerable. An attack tool, commonly known as 'Apache Killer', has been released in the wild. The attack tool causes a significant increase in CPU and memory usage on the server. Successful exploits will result in a denial-of-service condition. Summary:
Updated httpd packages that fix one security issue are now available for Red Hat Application Stack v2.
The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
- Relevant releases/architectures:
Red Hat Application Stack v2 for Enterprise Linux (v.5) - i386, x86_64
- (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the updated packages, the httpd daemon must be restarted for the update to take effect.
- Solution:
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259
- Bugs fixed (http://bugzilla.redhat.com/):
732928 - CVE-2011-3192 httpd: multiple ranges DoS
- Package List:
Red Hat Application Stack v2 for Enterprise Linux (v.5):
Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/RHWAS/SRPMS/httpd-2.2.13-3.el5s2.src.rpm
i386: httpd-2.2.13-3.el5s2.i386.rpm httpd-debuginfo-2.2.13-3.el5s2.i386.rpm httpd-devel-2.2.13-3.el5s2.i386.rpm httpd-manual-2.2.13-3.el5s2.i386.rpm mod_ssl-2.2.13-3.el5s2.i386.rpm
x86_64: httpd-2.2.13-3.el5s2.x86_64.rpm httpd-debuginfo-2.2.13-3.el5s2.i386.rpm httpd-debuginfo-2.2.13-3.el5s2.x86_64.rpm httpd-devel-2.2.13-3.el5s2.i386.rpm httpd-devel-2.2.13-3.el5s2.x86_64.rpm httpd-manual-2.2.13-3.el5s2.x86_64.rpm mod_ssl-2.2.13-3.el5s2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package
- References:
https://www.redhat.com/security/data/cve/CVE-2011-3192.html https://access.redhat.com/security/updates/classification/#important
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2011 Red Hat, Inc.
Packages for 2009.0 are provided as of the Extended Maintenance Program.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192
Updated Packages:
Mandriva Linux 2009.0: 794722078d25e916e10d41dab7099529 2009.0/i586/apache-base-2.2.9-12.12mdv2009.0.i586.rpm 95e2263fdc53b7e5ca1087bd207b67f0 2009.0/i586/apache-devel-2.2.9-12.12mdv2009.0.i586.rpm fd2387b91e3d050df4dcb8f71c66b00d 2009.0/i586/apache-htcacheclean-2.2.9-12.12mdv2009.0.i586.rpm a79155011bcfd0b9d35ad775826cbcfb 2009.0/i586/apache-mod_authn_dbd-2.2.9-12.12mdv2009.0.i586.rpm 1efee802fe6a3ca7e59065ba75fd4ffd 2009.0/i586/apache-mod_cache-2.2.9-12.12mdv2009.0.i586.rpm c4f4067f4f32f7b1bd02c510c85e778d 2009.0/i586/apache-mod_dav-2.2.9-12.12mdv2009.0.i586.rpm 0e2cc898950204b5ece75c73d37099f4 2009.0/i586/apache-mod_dbd-2.2.9-12.12mdv2009.0.i586.rpm 6d847a5c982da5f0f6eba3f8e3ea9f31 2009.0/i586/apache-mod_deflate-2.2.9-12.12mdv2009.0.i586.rpm c07fec10959c58aafaef912c1bc4ba9b 2009.0/i586/apache-mod_disk_cache-2.2.9-12.12mdv2009.0.i586.rpm 4b0bc90c0c55d6a6e35d7b95089897e2 2009.0/i586/apache-mod_file_cache-2.2.9-12.12mdv2009.0.i586.rpm b2e3e87000d17bd19ef1e90c216e5575 2009.0/i586/apache-mod_ldap-2.2.9-12.12mdv2009.0.i586.rpm db73005fe9ac79e270363e366cbba80e 2009.0/i586/apache-mod_mem_cache-2.2.9-12.12mdv2009.0.i586.rpm 3a2601e4b6b38a018270faf3f9eeae05 2009.0/i586/apache-mod_proxy-2.2.9-12.12mdv2009.0.i586.rpm 7f4b71f64e79751b70b805b27de0befb 2009.0/i586/apache-mod_proxy_ajp-2.2.9-12.12mdv2009.0.i586.rpm 5a2ee6a9495dca9fa35e9dc1cf5eadee 2009.0/i586/apache-mod_ssl-2.2.9-12.12mdv2009.0.i586.rpm b8dd7ed23f1d52826b0a7aa26db65d25 2009.0/i586/apache-modules-2.2.9-12.12mdv2009.0.i586.rpm df32690f6a0c881b9b88f5dbe839bfca 2009.0/i586/apache-mod_userdir-2.2.9-12.12mdv2009.0.i586.rpm 75b95ec22e34447b298ac4cda1f62a4d 2009.0/i586/apache-mpm-event-2.2.9-12.12mdv2009.0.i586.rpm 8986041e7735220e865e903713c6585a 2009.0/i586/apache-mpm-itk-2.2.9-12.12mdv2009.0.i586.rpm 7db0f13f8777a84e6eb2a4d54c1ed825 2009.0/i586/apache-mpm-peruser-2.2.9-12.12mdv2009.0.i586.rpm 5709d251b49a8fe51847c68c89b03ef4 2009.0/i586/apache-mpm-prefork-2.2.9-12.12mdv2009.0.i586.rpm 9436f8468da7538fd050408c672522fc 2009.0/i586/apache-mpm-worker-2.2.9-12.12mdv2009.0.i586.rpm 9a37ff8ccfe612446431e053df3c55f7 2009.0/i586/apache-source-2.2.9-12.12mdv2009.0.i586.rpm d1f20a10f4a743d492333ee9296c0c45 2009.0/SRPMS/apache-2.2.9-12.12mdv2009.0.src.rpm
Mandriva Linux 2009.0/X86_64: f2479060934de461fc5243f44c1c9877 2009.0/x86_64/apache-base-2.2.9-12.12mdv2009.0.x86_64.rpm 744dd6b28a74fe7707a7f485dd714f70 2009.0/x86_64/apache-devel-2.2.9-12.12mdv2009.0.x86_64.rpm 24b61074fcdc90664fdc22fa97731431 2009.0/x86_64/apache-htcacheclean-2.2.9-12.12mdv2009.0.x86_64.rpm ffe9175656c4b9f9a6d1c0905997612f 2009.0/x86_64/apache-mod_authn_dbd-2.2.9-12.12mdv2009.0.x86_64.rpm e10c4164abab4e7ecdfc354dc26b25c7 2009.0/x86_64/apache-mod_cache-2.2.9-12.12mdv2009.0.x86_64.rpm 0adf7c2b0207c7af3850da6ef054ade4 2009.0/x86_64/apache-mod_dav-2.2.9-12.12mdv2009.0.x86_64.rpm a052d802d4170269e4e84a7f09db2486 2009.0/x86_64/apache-mod_dbd-2.2.9-12.12mdv2009.0.x86_64.rpm dec7e0b69c3d6bb2b691b6d5828f9b4d 2009.0/x86_64/apache-mod_deflate-2.2.9-12.12mdv2009.0.x86_64.rpm e9d6a08421ce454bad59cd63f7298cde 2009.0/x86_64/apache-mod_disk_cache-2.2.9-12.12mdv2009.0.x86_64.rpm 9add3c7b179e884d55e24f5fab1507e6 2009.0/x86_64/apache-mod_file_cache-2.2.9-12.12mdv2009.0.x86_64.rpm c097e8abb528f4e04279012e2e77ebed 2009.0/x86_64/apache-mod_ldap-2.2.9-12.12mdv2009.0.x86_64.rpm 02396d0d003be14aa6361d8bf9a2d5c0 2009.0/x86_64/apache-mod_mem_cache-2.2.9-12.12mdv2009.0.x86_64.rpm 769f0f0836ccf07367d0efac06467a33 2009.0/x86_64/apache-mod_proxy-2.2.9-12.12mdv2009.0.x86_64.rpm 0e4c4a945729b9c8d2535796f4cd7e9e 2009.0/x86_64/apache-mod_proxy_ajp-2.2.9-12.12mdv2009.0.x86_64.rpm 7180962ec0dae497928579f2ec90d6b9 2009.0/x86_64/apache-mod_ssl-2.2.9-12.12mdv2009.0.x86_64.rpm 96a29510a80201af1dbaee936e28a6a7 2009.0/x86_64/apache-modules-2.2.9-12.12mdv2009.0.x86_64.rpm 0b895df84b0d65cfe26d4445e0f7a1a4 2009.0/x86_64/apache-mod_userdir-2.2.9-12.12mdv2009.0.x86_64.rpm 879ad41af024969d952c3ba00ab8c7ff 2009.0/x86_64/apache-mpm-event-2.2.9-12.12mdv2009.0.x86_64.rpm 34c244f26df5c2de95e5ab3a698a7ebd 2009.0/x86_64/apache-mpm-itk-2.2.9-12.12mdv2009.0.x86_64.rpm eb9122d0d0ccd25b1d3e6fe604d683c4 2009.0/x86_64/apache-mpm-peruser-2.2.9-12.12mdv2009.0.x86_64.rpm 2f9890e1c47b78db2f8331318d6f3fbe 2009.0/x86_64/apache-mpm-prefork-2.2.9-12.12mdv2009.0.x86_64.rpm c52990034c85d64875d9d5e42c8d86a9 2009.0/x86_64/apache-mpm-worker-2.2.9-12.12mdv2009.0.x86_64.rpm 47796ce3087582082c434d3860357a72 2009.0/x86_64/apache-source-2.2.9-12.12mdv2009.0.x86_64.rpm d1f20a10f4a743d492333ee9296c0c45 2009.0/SRPMS/apache-2.2.9-12.12mdv2009.0.src.rpm
Mandriva Linux 2010.1: 81a67350e6c227b77ca9262b87754a42 2010.1/i586/apache-base-2.2.15-3.3mdv2010.2.i586.rpm 22ed9c09140b2e0da116b3ae600c99b6 2010.1/i586/apache-devel-2.2.15-3.3mdv2010.2.i586.rpm 835a1cb70f3077b17c2751030e947a1a 2010.1/i586/apache-htcacheclean-2.2.15-3.3mdv2010.2.i586.rpm f83ae1aeec0aef106324e2eecafd84cd 2010.1/i586/apache-mod_authn_dbd-2.2.15-3.3mdv2010.2.i586.rpm 498d15231c15b7f763f2b78045264902 2010.1/i586/apache-mod_cache-2.2.15-3.3mdv2010.2.i586.rpm ec112c861fff6b5a031f4181d6b48809 2010.1/i586/apache-mod_dav-2.2.15-3.3mdv2010.2.i586.rpm b45c566d698b92b733b67bf6568f046a 2010.1/i586/apache-mod_dbd-2.2.15-3.3mdv2010.2.i586.rpm f70ae53162e2675fda33eb1f227eecb3 2010.1/i586/apache-mod_deflate-2.2.15-3.3mdv2010.2.i586.rpm aa5188a8f55699823245b443410d959b 2010.1/i586/apache-mod_disk_cache-2.2.15-3.3mdv2010.2.i586.rpm 527d0908428b913bd6c0554058df2c72 2010.1/i586/apache-mod_file_cache-2.2.15-3.3mdv2010.2.i586.rpm af5377b482327b152bb472f86287b6b4 2010.1/i586/apache-mod_ldap-2.2.15-3.3mdv2010.2.i586.rpm 4a1f0e7481668b8df9a4d2d277642c9b 2010.1/i586/apache-mod_mem_cache-2.2.15-3.3mdv2010.2.i586.rpm 13d629b5f77ff05c8da71e0d82c9b096 2010.1/i586/apache-mod_proxy-2.2.15-3.3mdv2010.2.i586.rpm 4593b415b086a5a9068e1bbb839762b2 2010.1/i586/apache-mod_proxy_ajp-2.2.15-3.3mdv2010.2.i586.rpm 9ad8a9aef61f1dbcaafe6556faa850f6 2010.1/i586/apache-mod_proxy_scgi-2.2.15-3.3mdv2010.2.i586.rpm 40de5c085fdfb042200556843de97956 2010.1/i586/apache-mod_reqtimeout-2.2.15-3.3mdv2010.2.i586.rpm b963aca159b1b72df406247fa459b47d 2010.1/i586/apache-mod_ssl-2.2.15-3.3mdv2010.2.i586.rpm b050d1b4cd9f5f6ce472239871bfce2c 2010.1/i586/apache-modules-2.2.15-3.3mdv2010.2.i586.rpm c9c6b5054581c07c3b87b132f5915fe0 2010.1/i586/apache-mod_userdir-2.2.15-3.3mdv2010.2.i586.rpm 297bfb9c523877a9539091ce3f432715 2010.1/i586/apache-mpm-event-2.2.15-3.3mdv2010.2.i586.rpm 9b07ff9544e2faff59f778ccc9ef29a8 2010.1/i586/apache-mpm-itk-2.2.15-3.3mdv2010.2.i586.rpm 7420dfebbce0b235a1e1311ca80180cf 2010.1/i586/apache-mpm-peruser-2.2.15-3.3mdv2010.2.i586.rpm 6995e9868b1fb6d21634bafa0856ac64 2010.1/i586/apache-mpm-prefork-2.2.15-3.3mdv2010.2.i586.rpm 912d834661d60ea0be3a4ea16d0cb73d 2010.1/i586/apache-mpm-worker-2.2.15-3.3mdv2010.2.i586.rpm 56a7db4e67242869c601cc826fa93cff 2010.1/i586/apache-source-2.2.15-3.3mdv2010.2.i586.rpm b1f2f7b99fe4fed57b5f1c9b5d8f1f4d 2010.1/SRPMS/apache-2.2.15-3.3mdv2010.2.src.rpm
Mandriva Linux 2010.1/X86_64: 0c2aa94e105e9515efac127fa20442e9 2010.1/x86_64/apache-base-2.2.15-3.3mdv2010.2.x86_64.rpm 33c94640b13df6c28182c16dea368e38 2010.1/x86_64/apache-devel-2.2.15-3.3mdv2010.2.x86_64.rpm 9a96344d4c53af1e8f7bc672e5b03258 2010.1/x86_64/apache-htcacheclean-2.2.15-3.3mdv2010.2.x86_64.rpm 5cfdc0d5ffcbb974ec4b3c37d9bd9ae3 2010.1/x86_64/apache-mod_authn_dbd-2.2.15-3.3mdv2010.2.x86_64.rpm b2f0790cdd2e8f9a626588730e9fed0e 2010.1/x86_64/apache-mod_cache-2.2.15-3.3mdv2010.2.x86_64.rpm 0e213220481b3bf26fef61edacae91e9 2010.1/x86_64/apache-mod_dav-2.2.15-3.3mdv2010.2.x86_64.rpm dc11bdc25528146f888203d7f5a002ee 2010.1/x86_64/apache-mod_dbd-2.2.15-3.3mdv2010.2.x86_64.rpm cddd73d266e4f341dfdb25841964aeba 2010.1/x86_64/apache-mod_deflate-2.2.15-3.3mdv2010.2.x86_64.rpm b6ea61f1ae2162b680f7e585413a78a2 2010.1/x86_64/apache-mod_disk_cache-2.2.15-3.3mdv2010.2.x86_64.rpm f8ffce7c0de413be9363ea5f19fe40f0 2010.1/x86_64/apache-mod_file_cache-2.2.15-3.3mdv2010.2.x86_64.rpm 1c48da2d7aaab57b1a64994fd36d0173 2010.1/x86_64/apache-mod_ldap-2.2.15-3.3mdv2010.2.x86_64.rpm 3ebe1e7ffe99f9776d993d71347b6e0e 2010.1/x86_64/apache-mod_mem_cache-2.2.15-3.3mdv2010.2.x86_64.rpm 6bc78c9f7d6fccc39d9fd7f3ac38268d 2010.1/x86_64/apache-mod_proxy-2.2.15-3.3mdv2010.2.x86_64.rpm e91158618a4360a0e31e91aa4c426380 2010.1/x86_64/apache-mod_proxy_ajp-2.2.15-3.3mdv2010.2.x86_64.rpm 7d8b66b5f07f414808994f92950fbe13 2010.1/x86_64/apache-mod_proxy_scgi-2.2.15-3.3mdv2010.2.x86_64.rpm e32cfd54df5d8959ce261b8af31be16b 2010.1/x86_64/apache-mod_reqtimeout-2.2.15-3.3mdv2010.2.x86_64.rpm 3c51abbefbdf59d35cfea47a3d08274a 2010.1/x86_64/apache-mod_ssl-2.2.15-3.3mdv2010.2.x86_64.rpm 78a819577503f238f7eb50cb2128a9f8 2010.1/x86_64/apache-modules-2.2.15-3.3mdv2010.2.x86_64.rpm b9e4ffc332fb36a3a76c3e4227af4fea 2010.1/x86_64/apache-mod_userdir-2.2.15-3.3mdv2010.2.x86_64.rpm d2ad2b6cc3eee3dc9d326ce62f403a90 2010.1/x86_64/apache-mpm-event-2.2.15-3.3mdv2010.2.x86_64.rpm 3b1b3b6d910e4c93a7abaf7d83bcc437 2010.1/x86_64/apache-mpm-itk-2.2.15-3.3mdv2010.2.x86_64.rpm 94195bd7bbd28489a1bc40bd78c33933 2010.1/x86_64/apache-mpm-peruser-2.2.15-3.3mdv2010.2.x86_64.rpm 0d6159786b6386e315e0f0b3af1be3ca 2010.1/x86_64/apache-mpm-prefork-2.2.15-3.3mdv2010.2.x86_64.rpm 70a9ed912a5d693d894031ac47c32f09 2010.1/x86_64/apache-mpm-worker-2.2.15-3.3mdv2010.2.x86_64.rpm 0db5f7644597f37e44b99c5da59d84d9 2010.1/x86_64/apache-source-2.2.15-3.3mdv2010.2.x86_64.rpm b1f2f7b99fe4fed57b5f1c9b5d8f1f4d 2010.1/SRPMS/apache-2.2.15-3.3mdv2010.2.src.rpm
Corporate 4.0: 6cb0c4739d8240c5cf749c1f86071b79 corporate/4.0/i586/apache-base-2.2.3-1.13.20060mlcs4.i586.rpm 1f5bff1627d07a0e9ab7541417cf3890 corporate/4.0/i586/apache-devel-2.2.3-1.13.20060mlcs4.i586.rpm 63fc24071e4c58bcacf8bd6b15b59f12 corporate/4.0/i586/apache-htcacheclean-2.2.3-1.13.20060mlcs4.i586.rpm 39e139423c51fc720ac59874e13e58d5 corporate/4.0/i586/apache-mod_authn_dbd-2.2.3-1.13.20060mlcs4.i586.rpm 95ad8d5dffb33c87879fccd7ec910ffb corporate/4.0/i586/apache-mod_cache-2.2.3-1.13.20060mlcs4.i586.rpm c0e3f64d4a14836ed9713418a2a37a3b corporate/4.0/i586/apache-mod_dav-2.2.3-1.13.20060mlcs4.i586.rpm 73d6b23714a17b3fd5a5db143c9b2e2f corporate/4.0/i586/apache-mod_dbd-2.2.3-1.13.20060mlcs4.i586.rpm b6ab335ed0766b9de3f2664dd749016d corporate/4.0/i586/apache-mod_deflate-2.2.3-1.13.20060mlcs4.i586.rpm b51574552a760bdc34edb396fdcf1713 corporate/4.0/i586/apache-mod_disk_cache-2.2.3-1.13.20060mlcs4.i586.rpm ab5c9ed4a99664edd26b98d4d10ce207 corporate/4.0/i586/apache-mod_file_cache-2.2.3-1.13.20060mlcs4.i586.rpm d42183bb46acf94d6210132a8960d796 corporate/4.0/i586/apache-mod_ldap-2.2.3-1.13.20060mlcs4.i586.rpm 48e903f8cb741290da23053686e44874 corporate/4.0/i586/apache-mod_mem_cache-2.2.3-1.13.20060mlcs4.i586.rpm 88d46c9bc3980a49dd3c8ee22b2e756c corporate/4.0/i586/apache-mod_proxy-2.2.3-1.13.20060mlcs4.i586.rpm 0c47f19fa12a16a547b4356fd3d65ef0 corporate/4.0/i586/apache-mod_proxy_ajp-2.2.3-1.13.20060mlcs4.i586.rpm 94f14b2cccff878e5fbfada10a411234 corporate/4.0/i586/apache-mod_ssl-2.2.3-1.13.20060mlcs4.i586.rpm 6c099d9fa38df92030808e1cfbea70f6 corporate/4.0/i586/apache-modules-2.2.3-1.13.20060mlcs4.i586.rpm 74745343711a6d62274fef26680cb7cb corporate/4.0/i586/apache-mod_userdir-2.2.3-1.13.20060mlcs4.i586.rpm 42407b409fcc55b28679496a515d2d3d corporate/4.0/i586/apache-mpm-prefork-2.2.3-1.13.20060mlcs4.i586.rpm 949273655647845491bf7433ed6947f5 corporate/4.0/i586/apache-mpm-worker-2.2.3-1.13.20060mlcs4.i586.rpm 1065b5ff5c0b493b11499fed06902455 corporate/4.0/i586/apache-source-2.2.3-1.13.20060mlcs4.i586.rpm 05cac55ce2e5fd0fa84e8cf7999b769c corporate/4.0/SRPMS/apache-2.2.3-1.13.20060mlcs4.src.rpm
Corporate 4.0/X86_64: ab51e2d012c3d2260ae7494421ee76b7 corporate/4.0/x86_64/apache-base-2.2.3-1.13.20060mlcs4.x86_64.rpm 53e32a766a5687182810ccf3256ec45c corporate/4.0/x86_64/apache-devel-2.2.3-1.13.20060mlcs4.x86_64.rpm e5b009bd8f9201a0333374a0d76e9ed6 corporate/4.0/x86_64/apache-htcacheclean-2.2.3-1.13.20060mlcs4.x86_64.rpm 9a228b8b08ffdb7601a0fcc9c13eb0a6 corporate/4.0/x86_64/apache-mod_authn_dbd-2.2.3-1.13.20060mlcs4.x86_64.rpm 216040d632883ac2f81ebcba986fa28c corporate/4.0/x86_64/apache-mod_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm ea200972e74b3de8b0c1c5d601e1b55f corporate/4.0/x86_64/apache-mod_dav-2.2.3-1.13.20060mlcs4.x86_64.rpm d7a9816d96d0b52e088e0161d0b686b3 corporate/4.0/x86_64/apache-mod_dbd-2.2.3-1.13.20060mlcs4.x86_64.rpm 997b77ebcccebf5cec8601d2a2205355 corporate/4.0/x86_64/apache-mod_deflate-2.2.3-1.13.20060mlcs4.x86_64.rpm c4e8adc271e2806fb17a682bd480d450 corporate/4.0/x86_64/apache-mod_disk_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm deb5a46c8843982b01620d12d182c2f2 corporate/4.0/x86_64/apache-mod_file_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm cf91402d2713a735ca5176f1fae748d4 corporate/4.0/x86_64/apache-mod_ldap-2.2.3-1.13.20060mlcs4.x86_64.rpm 61eab13877dc720a0ad2c1c55bd27612 corporate/4.0/x86_64/apache-mod_mem_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm dd810b0e0cf871c2a29847014edaf12e corporate/4.0/x86_64/apache-mod_proxy-2.2.3-1.13.20060mlcs4.x86_64.rpm 2ae4e2b6a4f8e89894c10062e26c52f8 corporate/4.0/x86_64/apache-mod_proxy_ajp-2.2.3-1.13.20060mlcs4.x86_64.rpm 63afd5a4dbfdbe53fc4fe77897a56288 corporate/4.0/x86_64/apache-mod_ssl-2.2.3-1.13.20060mlcs4.x86_64.rpm dcc501e359941fd3a30ba45e6681cef5 corporate/4.0/x86_64/apache-modules-2.2.3-1.13.20060mlcs4.x86_64.rpm 4b7a6233d441e4f8b87dbe6557957b8c corporate/4.0/x86_64/apache-mod_userdir-2.2.3-1.13.20060mlcs4.x86_64.rpm dd1478de94663c57c76384dea1c13383 corporate/4.0/x86_64/apache-mpm-prefork-2.2.3-1.13.20060mlcs4.x86_64.rpm f14236bbe5ee8edcc69e35ff92baa699 corporate/4.0/x86_64/apache-mpm-worker-2.2.3-1.13.20060mlcs4.x86_64.rpm f6f9428ee237c21cb75aa1f1f9f29981 corporate/4.0/x86_64/apache-source-2.2.3-1.13.20060mlcs4.x86_64.rpm 05cac55ce2e5fd0fa84e8cf7999b769c corporate/4.0/SRPMS/apache-2.2.3-1.13.20060mlcs4.src.rpm
Mandriva Enterprise Server 5: 8f2c047d79dc68e5109417c63e6341bc mes5/i586/apache-base-2.2.9-12.12mdvmes5.2.i586.rpm 40f90571fc968b477594a9edc1937aee mes5/i586/apache-devel-2.2.9-12.12mdvmes5.2.i586.rpm d48ca72adb7932a678b163779905c888 mes5/i586/apache-htcacheclean-2.2.9-12.12mdvmes5.2.i586.rpm 3c2949148e484d8ca2dcec6a77b68bf8 mes5/i586/apache-mod_authn_dbd-2.2.9-12.12mdvmes5.2.i586.rpm cff46a05b8b28bb318ab00b63f29c421 mes5/i586/apache-mod_cache-2.2.9-12.12mdvmes5.2.i586.rpm c01d753a6928dbb8b79309ad0ffc6bb7 mes5/i586/apache-mod_dav-2.2.9-12.12mdvmes5.2.i586.rpm 3d69d11a7f2ca0db8ef734f90b76cf47 mes5/i586/apache-mod_dbd-2.2.9-12.12mdvmes5.2.i586.rpm f9d11522f31e4eba56eab96b975aa271 mes5/i586/apache-mod_deflate-2.2.9-12.12mdvmes5.2.i586.rpm ce7e199d50c484dbaae4ac8a24fdfd8f mes5/i586/apache-mod_disk_cache-2.2.9-12.12mdvmes5.2.i586.rpm e13784109c7c987f161e62db23875e99 mes5/i586/apache-mod_file_cache-2.2.9-12.12mdvmes5.2.i586.rpm 0679925298a2b084fb835c8342ff2db6 mes5/i586/apache-mod_ldap-2.2.9-12.12mdvmes5.2.i586.rpm 18d8638b92b40111dc4c3d9061c4f954 mes5/i586/apache-mod_mem_cache-2.2.9-12.12mdvmes5.2.i586.rpm 4f2fb07cf38766b852c35f8ec84c4615 mes5/i586/apache-mod_proxy-2.2.9-12.12mdvmes5.2.i586.rpm 28b41c1d6e0898417715d91a8ae9c786 mes5/i586/apache-mod_proxy_ajp-2.2.9-12.12mdvmes5.2.i586.rpm e46a77e76f3a09d8ae3a1f13e8d73914 mes5/i586/apache-mod_ssl-2.2.9-12.12mdvmes5.2.i586.rpm 00732d13045c0503c471214f37dc7e7c mes5/i586/apache-modules-2.2.9-12.12mdvmes5.2.i586.rpm 4279cd7a1e58191ca58db6f23ce668af mes5/i586/apache-mod_userdir-2.2.9-12.12mdvmes5.2.i586.rpm f75d539d341234ffa941fc2ff95e1af9 mes5/i586/apache-mpm-event-2.2.9-12.12mdvmes5.2.i586.rpm 7dc2aac397b2764e9ffd2f62948fd5ac mes5/i586/apache-mpm-itk-2.2.9-12.12mdvmes5.2.i586.rpm bde67f65165d76bf16430e47d1fe0cb5 mes5/i586/apache-mpm-peruser-2.2.9-12.12mdvmes5.2.i586.rpm f437fcd2fd93bbe1b931035b1d5e7366 mes5/i586/apache-mpm-prefork-2.2.9-12.12mdvmes5.2.i586.rpm 990deab998e13f0e1f9b0705898265f7 mes5/i586/apache-mpm-worker-2.2.9-12.12mdvmes5.2.i586.rpm 60e73f359da6fb7f22e4f3e4221e9c47 mes5/i586/apache-source-2.2.9-12.12mdvmes5.2.i586.rpm f2081e47da0c06c0a01718c4fa6e615f mes5/SRPMS/apache-2.2.9-12.12mdvmes5.2.src.rpm
Mandriva Enterprise Server 5/X86_64: 68c25a84b6281604cf34e9b8c28f1049 mes5/x86_64/apache-base-2.2.9-12.12mdvmes5.2.x86_64.rpm d1fea716c89eab4cf4c794770a1b6b4b mes5/x86_64/apache-devel-2.2.9-12.12mdvmes5.2.x86_64.rpm dea5767ddfd52f162ace3ae36cfae969 mes5/x86_64/apache-htcacheclean-2.2.9-12.12mdvmes5.2.x86_64.rpm 7834f28e7bed5dc4919d0ec2f53cd7c2 mes5/x86_64/apache-mod_authn_dbd-2.2.9-12.12mdvmes5.2.x86_64.rpm 322e4da0618785d76b197703d0b4ffeb mes5/x86_64/apache-mod_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm 47cdb78ab11983271844e601f2a818dd mes5/x86_64/apache-mod_dav-2.2.9-12.12mdvmes5.2.x86_64.rpm 60a44577f80f32aa1be156b74a15d55e mes5/x86_64/apache-mod_dbd-2.2.9-12.12mdvmes5.2.x86_64.rpm cd5e323d115b924886a8939072265d96 mes5/x86_64/apache-mod_deflate-2.2.9-12.12mdvmes5.2.x86_64.rpm 34c3f3579c313da8c2f3fc6376c6480f mes5/x86_64/apache-mod_disk_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm 41f634d505250b2ad795871311f83ef1 mes5/x86_64/apache-mod_file_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm e2d14257c9122287ea7a7e1ec80327b3 mes5/x86_64/apache-mod_ldap-2.2.9-12.12mdvmes5.2.x86_64.rpm 5d93d3561c9b8410e2603bc5f0edc50f mes5/x86_64/apache-mod_mem_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm 9f5e94a9d87db50d479ddb17219d831d mes5/x86_64/apache-mod_proxy-2.2.9-12.12mdvmes5.2.x86_64.rpm 4923ba24f69c8dacbe56e9871e3b8cc4 mes5/x86_64/apache-mod_proxy_ajp-2.2.9-12.12mdvmes5.2.x86_64.rpm 22238b128d6dc133a5dae8066c2a18a7 mes5/x86_64/apache-mod_ssl-2.2.9-12.12mdvmes5.2.x86_64.rpm 694ab458009917d81721764e0aad57a9 mes5/x86_64/apache-modules-2.2.9-12.12mdvmes5.2.x86_64.rpm de18f38d71f2fc95d6fe782510cb26bd mes5/x86_64/apache-mod_userdir-2.2.9-12.12mdvmes5.2.x86_64.rpm 30858da82b560e8d18b85c2601e71851 mes5/x86_64/apache-mpm-event-2.2.9-12.12mdvmes5.2.x86_64.rpm a22541e594bfc4ea2de372941d938396 mes5/x86_64/apache-mpm-itk-2.2.9-12.12mdvmes5.2.x86_64.rpm c33ea0b752f5a394dbe7e27fad15182f mes5/x86_64/apache-mpm-peruser-2.2.9-12.12mdvmes5.2.x86_64.rpm 24d6c3ade6d8053562c5e14ce6b25250 mes5/x86_64/apache-mpm-prefork-2.2.9-12.12mdvmes5.2.x86_64.rpm 3b54d14149d52a44d130a2c45f48e79d mes5/x86_64/apache-mpm-worker-2.2.9-12.12mdvmes5.2.x86_64.rpm 33fab873f19b2cd2ac6c9fc87ecf7852 mes5/x86_64/apache-source-2.2.9-12.12mdvmes5.2.x86_64.rpm f2081e47da0c06c0a01718c4fa6e615f mes5/SRPMS/apache-2.2.9-12.12mdvmes5.2.src.rpm
To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. HP System Management Homepage (SMH) before v7.0 running on Linux and Windows.
The Hewlett-Packard Company thanks Silent Dream for reporting CVE-2012-0135 to security-alert@hp.com
RESOLUTION
HP has provided HP System Management Homepage v7.0 or subsequent to resolve the vulnerabilities. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. This issue only affects the Debian 5.0 oldstable/lenny distribution.
For the oldstable distribution (lenny), these problems have been fixed in version 2.2.9-10+lenny10.
For the stable distribution (squeeze), this problem has been fixed in version 2.2.16-6+squeeze2.
For the testing distribution (wheezy), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in version 2.2.19-2.
We recommend that you upgrade your apache2 packages. The new version number for the oldstable distribution is 2.2.6-02-1+lenny5. In the stable distribution, apache2-mpm-itk has the same version number as apache2.
Release Date: 2011-09-26 Last Updated: 2011-10-26
Potential Security Impact: Remote Denial of Service (DoS)
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP-UX Apache Web Server. This vulnerability could be exploited remotely to create a Denial of Service (DoS).
References: CVE-2011-0419, CVE-2011-3192, CVE-2011-3348
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.23, B.11.31 running HP-UX Apache Web Server Suite v3.18 containing Apache v2.2.15.08 or earlier
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2011-0419 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2011-3192 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8 CVE-2011-3348 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following software updates to resolve this vulnerability.
The updates are available for download from the following location https://h20392.www2.hp.com/portal/swdepot/try.do?productNumber=HPUXWSATW319
HP-UX Web Server Suite (WSS) v3.19 containing Apache v2.2.15.09 HP-UX 11i Releases Apache Depot name
B.11.23 B.11.31 (32-bit) / HPUXWS22ATW-B319-32.depot
B.11.23 B.11.31 (64-bit) / HPUXWS22ATW-B319-64.depot
MANUAL ACTIONS: Yes - Update Install HP-UX Web Server Suite v3.19 containing v2.2.15.09 or subsequent.
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX Web Server Suite v3.19 HP-UX B.11.23 HP-UX B.11.31 ================== hpuxws22APCH32.APACHE hpuxws22APCH32.APACHE2 hpuxws22APCH32.AUTH_LDAP hpuxws22APCH32.AUTH_LDAP2 hpuxws22APCH32.MOD_JK hpuxws22APCH32.MOD_JK2 hpuxws22APCH32.MOD_PERL hpuxws22APCH32.MOD_PERL2 hpuxws22APCH32.PHP hpuxws22APCH32.PHP2 hpuxws22APCH32.WEBPROXY hpuxws22APCH32.WEBPROXY2 hpuxws22APACHE.APACHE hpuxws22APACHE.APACHE2 hpuxws22APACHE.AUTH_LDAP hpuxws22APACHE.AUTH_LDAP2 hpuxws22APACHE.MOD_JK hpuxws22APACHE.MOD_JK2 hpuxws22APACHE.MOD_PERL hpuxws22APACHE.MOD_PERL2 hpuxws22APACHE.PHP hpuxws22APACHE.PHP2 hpuxws22APACHE.WEBPROXY hpuxws22APACHE.WEBPROXY2 action: install revision B.2.2.15.09 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 26 September 2011 Initial release Version:2 (rev.2) - 26 October 2011 Final depots available
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For further information, contact normal HP Services support channel.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c02964430
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2011 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Apache HTTPD Security ADVISORY
==============================
UPDATE 2
Title: Range header DoS vulnerability Apache HTTPD 1.3/2.x
CVE: CVE-2011-3192 Last Change: 20110826 1030Z Date: 20110824 1600Z Product: Apache HTTPD Web Server Versions: Apache 1.3 all versions, Apache 2 all versions
Changes since last update
In addition to the 'Range' header - the 'Range-Request' header is equally affected. Furthermore various vendor updates, improved regexes (speed and accommodating a different and new attack pattern). Active use of this tool has been observed.
The default Apache HTTPD installation is vulnerable. This advisory will be updated when a long term fix is available.
A full fix is expected in the next 24 hours.
Background and the 2007 report
There are two aspects to this vulnerability. One is new, is Apache specific; and resolved with this server side fix. The other issue is fundamentally a protocol design issue dating back to 2007:
http://seclists.org/bugtraq/2007/Jan/83
The contemporary interpretation of the HTTP protocol (currently) requires a server to return multiple (overlapping) ranges; in the order requested. This means that one can request a very large range (e.g. from byte 0- to the end) 100's of times in a single request.
Being able to do so is an issue for (probably all) webservers and currently subject of an IETF discussion to change the protocol:
http://trac.tools.ietf.org/wg/httpbis/trac/ticket/311
This advisory details a problem with how Apache httpd and its so called internal 'bucket brigades' deal with serving such "valid" request. The problem is that currently such requests internally explode into 100's of large fetches, all of which are kept in memory in an inefficient way. This is being addressed in two ways. By making things more efficient. And by weeding out or simplifying requests deemed too unwieldy.
Mitigation:
There are several immediate options to mitigate this issue until a full fix is available. Below examples handle both the 'Range' and the legacy 'Request-Range' with various levels of care.
Note that 'Request-Range' is a legacy name dating back to Netscape Navigator 2-3 and MSIE 3. Depending on your user community - it is likely that you can use option '3' safely for this older 'Request-Range'.
1) Use SetEnvIf or mod_rewrite to detect a large number of ranges and then either ignore the Range: header or reject the request. # CVE-2011-3192 SetEnvIf Range (?:,.*?){5,5} bad-range=1 RequestHeader unset Range env=bad-range
# We always drop Request-Range; as this is a legacy
# dating back to MSIE3 and Netscape 2 and 3.
RequestHeader unset Request-Range
# optional logging.
CustomLog logs/range-CVE-2011-3192.log common env=bad-range
CustomLog logs/range-CVE-2011-3192.log common env=bad-req-range
Above may not work for all configurations. In particular situations mod_cache and (language) modules may act before the 'unset' is executed upon during the 'fixup' phase.
Option 2: (Pre 2.2 and 1.3)
# Reject request when more than 5 ranges in the Range: header.
# CVE-2011-3192
#
RewriteEngine on
RewriteCond %{HTTP:range} !(bytes=[^,]+(,[^,]+){0,4}$|^$)
# RewriteCond %{HTTP:request-range} !(bytes=[^,]+(?:,[^,]+){0,4}$|^$)
RewriteRule .* - [F]
# We always drop Request-Range; as this is a legacy
# dating back to MSIE3 and Netscape 2 and 3.
RequestHeader unset Request-Range
The number 5 is arbitrary. Several 10's should not be an issue and may be required for sites which for example serve PDFs to very high end eReaders or use things such complex http based video streaming.
2) Limit the size of the request field to a few hundred bytes. Note that while this keeps the offending Range header short - it may break other headers; such as sizeable cookies or security fields.
LimitRequestFieldSize 200
Note that as the attack evolves in the field you are likely to have to further limit this and/or impose other LimitRequestFields limits.
See: http://httpd.apache.org/docs/2.2/mod/core.html#limitrequestfieldsize
3) Use mod_headers to completely dis-allow the use of Range headers:
RequestHeader unset Range
Note that this may break certain clients - such as those used for e-Readers and progressive/http-streaming video.
Furthermore to ignore the Netscape Navigator 2-3 and MSIE 3 specific legacy header - add:
RequestHeader unset Request-Range
Unlike the commonly used 'Range' header - dropping the 'Request-Range' is not likely to affect many clients.
4) Deploy a Range header count module as a temporary stopgap measure:
http://people.apache.org/~dirkx/mod_rangecnt.c
Precompiled binaries for some platforms are available at:
http://people.apache.org/~dirkx/BINARIES.txt
5) Apply any of the current patches under discussion - such as:
http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e http://svn.apache.org/viewvc?view=revision&sortby=date&revision=1161534
OS and Vendor specific information
Red Hat: Option 1 cannot be used on Red Hat Enterprise Linux 4. https://bugzilla.redhat.com/show_bug.cgi?id=732928
NetWare: Pre compiled binaries available.
mod_security: Has updated their rule set; see http://blog.spiderlabs.com/2011/08/mitigation-of-apache-range-header-dos-attack.html
Actions:
Apache HTTPD users who are concerned about a DoS attack against their server should consider implementing any of the above mitigations immediately.
When using a third party attack tool to verify vulnerability - note that most of the versions in the wild currently check for the presence of mod_deflate; and will (mis)report that your server is not vulnerable if this module is not present. This vulnerability is not dependent on presence or absence of that module.
Planning:
This advisory will be updated when new information, a patch or a new release is available. A patch or new Apache release for Apache 2.0 and 2.2 is expected in the next 24 hours. Note that, while popular, Apache 1.3 is deprecated.
- -- end of advisory - update 2 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (Darwin)
iEYEARECAAYFAk5Xdu8ACgkQ/W+IxiHQpxvN8ACgwsUJ6oYMq3SyoPHCR7rqsbP6 DFkAoKhZcF87F96h40tQdM1SZsiVX9N5 =07sc -----END PGP SIGNATURE-----
Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ . ----------------------------------------------------------------------
Secunia is hiring!
Find your next job here:
http://secunia.com/company/jobs/
TITLE: Oracle Fusion Middleware / Application Server ByteRange Filter Denial of Service
SECUNIA ADVISORY ID: SA46000
VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/46000/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=46000
RELEASE DATE: 2011-09-16
DISCUSS ADVISORY: http://secunia.com/advisories/46000/#comments
AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)
http://secunia.com/advisories/46000/
ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS
https://ca.secunia.com/?page=viewadvisory&vuln_id=46000
ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING
http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
DESCRIPTION: Oracle has acknowledged a vulnerability in Oracle Fusion Middleware and Oracle Application Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
For more information: SA45606
The vulnerability is reported in the following products: * Oracle Fusion Middleware 11g versions 11.1.1.3.0, 11.1.1.4.0, and 11.1.1.5.0. * Oracle Application Server 10g versions 10.1.2.3.0 and 10.1.3.5.0.
SOLUTION: Apply patches. Please see the vendor's advisory for details.
ORIGINAL ADVISORY: http://blogs.oracle.com/security/entry/security_alert_for_cve_2011 http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html
OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201108-0132",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "web server",
"scope": "eq",
"trust": 2.4,
"vendor": "hitachi",
"version": "03-00-01"
},
{
"model": "web server",
"scope": "eq",
"trust": 2.1,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "web server",
"scope": "eq",
"trust": 1.5,
"vendor": "hitachi",
"version": "03-00-02"
},
{
"model": "web server",
"scope": "eq",
"trust": 1.5,
"vendor": "hitachi",
"version": "03-10"
},
{
"model": "linux enterprise server",
"scope": "eq",
"trust": 1.0,
"vendor": "suse",
"version": "10"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "10.10"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 1.0,
"vendor": "opensuse",
"version": "11.3"
},
{
"model": "http server",
"scope": "gte",
"trust": 1.0,
"vendor": "apache",
"version": "2.2.0"
},
{
"model": "linux enterprise software development kit",
"scope": "eq",
"trust": 1.0,
"vendor": "suse",
"version": "10"
},
{
"model": "http server",
"scope": "gte",
"trust": 1.0,
"vendor": "apache",
"version": "2.0.35"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "11.04"
},
{
"model": "http server",
"scope": "lt",
"trust": 1.0,
"vendor": "apache",
"version": "2.2.20"
},
{
"model": "linux enterprise software development kit",
"scope": "eq",
"trust": 1.0,
"vendor": "suse",
"version": "11"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 1.0,
"vendor": "opensuse",
"version": "11.4"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "8.04"
},
{
"model": "http server",
"scope": "lt",
"trust": 1.0,
"vendor": "apache",
"version": "2.0.65"
},
{
"model": "linux enterprise server",
"scope": "eq",
"trust": 1.0,
"vendor": "suse",
"version": "11"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "10.04"
},
{
"model": "web server linux",
"scope": "eq",
"trust": 0.9,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.9,
"vendor": "hitachi",
"version": "03-00-05"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.9,
"vendor": "hitachi",
"version": "03-10-01"
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "apache http server",
"version": null
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "debian gnu linux",
"version": null
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "mandriva s a",
"version": null
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "oracle",
"version": null
},
{
"model": "jp1/cm2/snmp system observer",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "09-00"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-03"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-00"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-00"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-00"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "jp1/hicommand device manager",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "5.9-08"
},
{
"model": "jp1/hicommand device manager",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "5.9-00"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-03"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-01"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-02"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-04"
},
{
"model": "web server linux",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-01"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-00"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.0-06"
},
{
"model": "replication manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-01"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-02"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-02"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.0-00"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "replication manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "tiered storage manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-02"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-04"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1-01"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.0"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.1.1-01"
},
{
"model": "replication manager software )",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "04-10-02"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.3.1"
},
{
"model": "interstage studio enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2"
},
{
"model": "management center for cisco security agent",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50"
},
{
"model": "wireless control system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-04"
},
{
"model": "device manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.6-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.58"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.54"
},
{
"model": "interstage apworks modelers-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "6.0"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.42"
},
{
"model": "replication manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.401"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50"
},
{
"model": "interstage application server plus",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0.1"
},
{
"model": "linux enterprise sdk sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"model": "hat jboss enterprise web server for rhel as",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "41.0"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-00"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.1.1"
},
{
"model": "hat jboss enterprise web server for rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "61.0.2"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-03"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.2"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "hat jboss enterprise web server for rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "61.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.41"
},
{
"model": "interstage studio standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "device manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.9"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.57"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.6"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.11"
},
{
"model": "web server aix",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0-06(x64))"
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "replication manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-01"
},
{
"model": "voice portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.49"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-06"
},
{
"model": "web server 04-10",
"scope": null,
"trust": 0.3,
"vendor": "hitachi",
"version": null
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-2"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "software foundation apache 2.0.61-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-50"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-02"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "1.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.50"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-01"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.0-68"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.1.7"
},
{
"model": "interstage service integrator standard edition 9.0.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "wireless control system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.1"
},
{
"model": "hat enterprise linux hpc node",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.10"
},
{
"model": "software foundation apache -beta",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.34"
},
{
"model": "point software secureplatform r60 hfa 05",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "solaris express",
"scope": "eq",
"trust": 0.3,
"vendor": "sun",
"version": "11"
},
{
"model": "systemwalker service quality coordinator enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "13.5"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.2-77"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.4"
},
{
"model": "groupware server",
"scope": "ne",
"trust": 0.3,
"vendor": "kolab",
"version": "2.3.4"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10-03"
},
{
"model": "jp1/hicommand provisioning manager (solaris(sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "interstage application development cycle manager standard editio 10.0.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "works common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.8"
},
{
"model": "ciscoworks lan management solution",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.6"
},
{
"model": "provisioning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1"
},
{
"model": "job management partner 1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-0"
},
{
"model": "software foundation apache -dev",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.56"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.0.5"
},
{
"model": "jp1/hicommand provisioning manager )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.1"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-03"
},
{
"model": "web server solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-01"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0-06"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.2.77"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.10"
},
{
"model": "provisioning manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "systemwalker availability view enterprise edition 13.3.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.17"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-03"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10-04"
},
{
"model": "interstage application development cycle manager standard editio",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.0"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "point software secureplatform r65 hfa02",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "software foundation apache -beta",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.28"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.15"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2.27"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1.1-04(x64))"
},
{
"model": "linux enterprise server sp4",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-01(x64)"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.3.1"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.1"
},
{
"model": "interstage apworks modelers-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3"
},
{
"model": "network collector",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "6.1"
},
{
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.3"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.1"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0.96"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.55"
},
{
"model": "software foundation apache 2.2.6-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10-04"
},
{
"model": "interstage service integrator enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.5-00"
},
{
"model": "systemwalker availability view standard edition 13.3.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.17"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.0"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "interstage list manager enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "tiered storage manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "software foundation apache 2.2.15-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "jp1/hicommand device manager (solaris (s",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "5.9.0-08"
},
{
"model": "ciscoworks lan management solution",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.2"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-01"
},
{
"model": "secure global desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "sun",
"version": "4.2"
},
{
"model": "device manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "interstage application development cycle manager enterprise edit",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.1"
},
{
"model": "web server (hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-0011.0)"
},
{
"model": "web server 2).(sola",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-01(*"
},
{
"model": "interstage application development cycle manager enterprise edit",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.2"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "point software secureplatform ng fp1",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.2"
},
{
"model": "linux enterprise sdk sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.1.5"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10-05"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.45"
},
{
"model": "it operations analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-53-01"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "point software endpoint security",
"scope": "eq",
"trust": 0.3,
"vendor": "check",
"version": "0"
},
{
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.001"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.4"
},
{
"model": "hat jboss enterprise web server for rhel server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "51.0.2"
},
{
"model": "device manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.12"
},
{
"model": "hat enterprise linux desktop optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-30"
},
{
"model": "jp1/hicommand device manager (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "5.9-00(x64))"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "point software secureplatform r65.70",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "jp1/hicommand provisioning manager )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.0"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.0.13"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.68"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "7.0.164"
},
{
"model": "openvms secure web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1.0.102"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.0"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1.1-03"
},
{
"model": "systemwalker availability view standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "13.3"
},
{
"model": "video surveillance operations manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1.0"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.3"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-08"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-02"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.31"
},
{
"model": "ciscoworks lan management solution",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.2"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-00-08"
},
{
"model": "software foundation apache beta",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.28"
},
{
"model": "network collector",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-04"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "linux ia-64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.3.1"
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.28"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1.1-03(x64))"
},
{
"model": "point software secureplatform ng fp2",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.35"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0-00"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5665"
},
{
"model": "software foundation apache a9",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0"
},
{
"model": "corporate server x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "4.0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.0.42"
},
{
"model": "interstage studio standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.2"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1.0-103"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-05"
},
{
"model": "os/400 v6r1m0",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "12.2"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.1.1.4"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0.0.95"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "voice portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.8"
},
{
"model": "software foundation apache 2.2.5-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-10"
},
{
"model": "onboard administrator",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.32"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-00-07"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "it operations analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-53"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.0.15"
},
{
"model": "it operations director",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-50-06"
},
{
"model": "point software security gateways",
"scope": "eq",
"trust": 0.3,
"vendor": "check",
"version": "0"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "san-os",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "linux mandrake x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2011"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0.0-95"
},
{
"model": "onboard administrator",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.31"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.10"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.41"
},
{
"model": "provisioning manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.59"
},
{
"model": "hat jboss enterprise web server for rhel es",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "41.0.2"
},
{
"model": "groupware server -rc2",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.2"
},
{
"model": "system management homepage",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7.0"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.2"
},
{
"model": "meeting exchange sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.2"
},
{
"model": "interstage software quality analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.0"
},
{
"model": "aura messaging",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-20"
},
{
"model": "interstage application server standard-j edition b",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.19"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "enterprise linux ws",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "4"
},
{
"model": "application stack",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "v20"
},
{
"model": "jp1/it service level management manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-50"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-20"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "7.0.163"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.4"
},
{
"model": "wireless control system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.2"
},
{
"model": "it operations analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-51-01"
},
{
"model": "enterprise linux es",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "4"
},
{
"model": "linux lts sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "onboard administrator",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.50"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.5"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.402"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.6"
},
{
"model": "mac os",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.7.2"
},
{
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "ciscoworks lan management solution",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.5"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11.4"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-03"
},
{
"model": "interstage application server standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "6.0"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "messaging storage server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "mac os server",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.7.2"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.51"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.1.1.3"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.0.17"
},
{
"model": "web server 04-00.",
"scope": null,
"trust": 0.3,
"vendor": "hitachi",
"version": null
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.18"
},
{
"model": "interstage application server standard-j edition 9.1.0b",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "12.1"
},
{
"model": "software foundation apache",
"scope": "ne",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.20"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.1-73"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-01"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-00(x64))"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.2"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-04"
},
{
"model": "hat jboss enterprise web server for rhel server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "51.0"
},
{
"model": "provisioning manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "corporate server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "4.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.35"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.27"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.5"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-02"
},
{
"model": "enterprise linux desktop version",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "4"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10-01"
},
{
"model": "replication manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "solaris 10 sparc",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"model": "voice portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1"
},
{
"model": "software foundation apache 2.3.38-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.3.2"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.6"
},
{
"model": "groupware server",
"scope": "ne",
"trust": 0.3,
"vendor": "kolab",
"version": "2.3.3"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "wireless control system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.95"
},
{
"model": "interstage application server plus",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "6.0"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-02"
},
{
"model": "interstage application server web-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-30"
},
{
"model": "interstage service integrator standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "point software dlp-1",
"scope": "eq",
"trust": 0.3,
"vendor": "check",
"version": "0"
},
{
"model": "interstage application server plus developer",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "6.0"
},
{
"model": "meeting exchange sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.39"
},
{
"model": "linux enterprise server sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"model": "secure global desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "sun",
"version": "4.3"
},
{
"model": "point software secureplatform r71.30",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0.0.13"
},
{
"model": "interstage application server enterprise edition b",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-11"
},
{
"model": "jp1/cm2/snmp system observer )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-00"
},
{
"model": "system management homepage b",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.2.77"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "linux mips",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.2"
},
{
"model": "application server 10g r2",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10.1.2.3.0"
},
{
"model": "groupware server 2.2-rc1",
"scope": null,
"trust": 0.3,
"vendor": "kolab",
"version": null
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.5"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.3.0-00"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-05"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5687"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.3"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6"
},
{
"model": "systemwalker service quality coordinator enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "13.4"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.3"
},
{
"model": "message networking sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "linux enterprise server for vmware sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"model": "device manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.43"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.0.2"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.64"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.0"
},
{
"model": "jp1/it service level management manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-0"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "it operations director",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-50-01"
},
{
"model": "transportation manager",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "5.5.06.00"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.401"
},
{
"model": "hat enterprise linux server 6.0.z",
"scope": null,
"trust": 0.3,
"vendor": "red",
"version": null
},
{
"model": "interstage studio enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.46"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.25"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-03"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "5.5"
},
{
"model": "hp-ux web server suite",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.33"
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "systemwalker service catalog manager v14g",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "14.1"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10.1.3.5"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.3"
},
{
"model": "jp1/hicommand device manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "tiered storage manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10-09"
},
{
"model": "wide area application services 4.1.1b",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "ciscoworks lan management solution update",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.6"
},
{
"model": "messaging storage server sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "enterprise server x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "0"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-11-02"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.3"
},
{
"model": "aura session manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.14"
},
{
"model": "it operations director",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-50-07"
},
{
"model": "ciscoworks lan management solution (dec update",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.02007"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.0.4"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.1.91.0"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-20"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.1"
},
{
"model": "interstage studio standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.1"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.23"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-01"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "linux x86 64 -current",
"scope": null,
"trust": 0.3,
"vendor": "slackware",
"version": null
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2010.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
},
{
"model": "wireless control system for linux",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.2"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.5"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.18"
},
{
"model": "software foundation apache 2.0.62-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0.1"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-01(*2)"
},
{
"model": "groupware server 2.2-rc3",
"scope": null,
"trust": 0.3,
"vendor": "kolab",
"version": null
},
{
"model": "replication manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "interstage application server plus",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.6"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-04"
},
{
"model": "jp1/hicommand device manager (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "5.9-08(x64))"
},
{
"model": "jp1/hicommand device manager (solaris (s",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "5.9.0-00"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.0.3"
},
{
"model": "hat enterprise linux 5.3.ll",
"scope": null,
"trust": 0.3,
"vendor": "red",
"version": null
},
{
"model": "provisioning manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.3.0-00"
},
{
"model": "hp-ux web server suite",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.17"
},
{
"model": "interstage application server plus developer",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.13"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.8"
},
{
"model": "hat jboss enterprise web server for rhel as",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "41.0.2"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00-02"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.3"
},
{
"model": "enterprise server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandrakesoft",
"version": "5"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.9"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.15"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-02"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0"
},
{
"model": "meeting exchange",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "interstage studio enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "aura communication manager utility services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.9"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.5"
},
{
"model": "hat enterprise linux els",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "3"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-30"
},
{
"model": "web server (hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-0111.0"
},
{
"model": "provisioning manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "software foundation apache 2.0.60-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "netware sp6",
"scope": "eq",
"trust": 0.3,
"vendor": "novell",
"version": "6.5"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.1.1"
},
{
"model": "interstage application server plus",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0.1"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.0.1"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-60-01"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.0.35"
},
{
"model": "hat enterprise linux desktop client",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "5"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.1"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "netware sp8",
"scope": "eq",
"trust": 0.3,
"vendor": "novell",
"version": "6.5.0"
},
{
"model": "interstage application server plus developer",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0.1"
},
{
"model": "mobility services engine",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-40"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "5.0"
},
{
"model": "jp1/automatic job management system web operation assistant",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "3-0"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"model": "works common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.2"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"model": "replication manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.8"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.0.39"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.10"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2009.0"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-01"
},
{
"model": "hat enterprise linux hpc node optional",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.60"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "systemwalker software configuration manager",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "14.1"
},
{
"model": "message networking",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "tiered storage manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-03(x64))"
},
{
"model": "linux enterprise server sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.3"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.37"
},
{
"model": "cts telepresence systems",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.3"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.13"
},
{
"model": "telepresence video communication server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.10"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1"
},
{
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6"
},
{
"model": "interstage service integrator enterprise edition 9.0.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "jp1/integrated management service support",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-00-50"
},
{
"model": "point software secureplatform r75",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-09"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.1"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5632"
},
{
"model": "point software secureplatform ng fp2 edition",
"scope": "eq",
"trust": 0.3,
"vendor": "check",
"version": "2"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0-00(x64))"
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-01"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.2.2"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.37"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.56"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.3.1"
},
{
"model": "web server custom edition",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-0"
},
{
"model": "linux mandrake",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "2011"
},
{
"model": "interstage application development cycle manager standard editio",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.1"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0"
},
{
"model": "wireless control system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.96"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "linux lts lpia",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "interstage application development cycle manager standard editio",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "10.2"
},
{
"model": "interstage list manager standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "6.0.181.0"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.2.4"
},
{
"model": "software foundation apache",
"scope": "ne",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.21"
},
{
"model": "transportation manager",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.0"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "point software ipso6 r70.40",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.4"
},
{
"model": "interstage software quality analyzer 10.0.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "global link manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "secure global desktop",
"scope": "ne",
"trust": 0.3,
"vendor": "sun",
"version": "4.62"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10-10"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-60-01"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "5.2"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-10-03"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5150"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "replication manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "software foundation apache 2.2.7-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "hp-ux b.11.31",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "point software ipso6 r75",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.19"
},
{
"model": "web server 04-00-03.",
"scope": null,
"trust": 0.3,
"vendor": "hitachi",
"version": null
},
{
"model": "linux s/390",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "tiered storage manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5675"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10-03"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.2"
},
{
"model": "messaging storage server sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10"
},
{
"model": "application server 10g r3",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10.1.3.5.0"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-40"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-02(x64))"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.44"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.3"
},
{
"model": "interstage application server standard-j edition a",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1.0"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-00"
},
{
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5645"
},
{
"model": "jp1/integrated management service support",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-0"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-40"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.19"
},
{
"model": "hat enterprise linux desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.0.1"
},
{
"model": "netware sp7",
"scope": "eq",
"trust": 0.3,
"vendor": "novell",
"version": "6.5"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "tiered storage manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2.0-12"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.3"
},
{
"model": "hat enterprise linux as",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "4"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.9"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-00"
},
{
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11.3"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.27"
},
{
"model": "linux x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.1"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5655"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-60"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.7.1"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-060"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.13"
},
{
"model": "interstage job workload server",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.1"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.2"
},
{
"model": "jp1/hicommand tuning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-00"
},
{
"model": "jp1/hicommand provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-90"
},
{
"model": "aura session manager sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.7.1"
},
{
"model": "provisioning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.0.0-00"
},
{
"model": "jp1/automatic job management system web operation assistant",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "2-0"
},
{
"model": "linux x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.0"
},
{
"model": "secure backup",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10.3.0.3"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1"
},
{
"model": "software foundation apache -beta",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.32"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.2.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.7"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.11"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.38"
},
{
"model": "provisioning manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.001"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.52"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.1.17"
},
{
"model": "tuning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.2"
},
{
"model": "point software secureplatform ng",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.63"
},
{
"model": "point software ipso6 r71.30",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.36"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.402"
},
{
"model": "point software secureplatform r70.40",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-08-50"
},
{
"model": "web server linux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-01"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-10-02"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.0.1.73"
},
{
"model": "hp-ux web server suite",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.18"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-00"
},
{
"model": "provisioning manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "interstage studio enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.2"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-01"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.2"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.4"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1.1"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.7"
},
{
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "hat jboss enterprise web server for rhel es",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "41.0"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.4"
},
{
"model": "cloud infrastructure management software",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "1.2"
},
{
"model": "linux lts powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "8.04"
},
{
"model": "groupware server",
"scope": "eq",
"trust": 0.3,
"vendor": "kolab",
"version": "2.2.3"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.6"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.1.1.5"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-00"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "linux enterprise sdk sp4",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.100.0"
},
{
"model": "linux enterprise server sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"model": "linux x86 64",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.37"
},
{
"model": "jp1/integrated management service support",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-09-50-01"
},
{
"model": "tiered storage manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "interstage apworks modelers-j edition 6.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "wireless control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.2.62.0"
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.1"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.2"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.1.1"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.6"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.3.3"
},
{
"model": "web server windows",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10-03(x64)"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "web server aix",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "device manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.1.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.16"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-03"
},
{
"model": "device manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-03"
},
{
"model": "replication manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.19"
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2.0-00"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.5"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "linux -current",
"scope": null,
"trust": 0.3,
"vendor": "slackware",
"version": null
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "replication manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-01"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.12"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.1"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-0"
},
{
"model": "aura sip enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.0"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.1"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"model": "onboard administrator",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "3.55"
},
{
"model": "hat enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "5"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5135"
},
{
"model": "provisioning manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.2"
},
{
"model": "device manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.0-00"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.0"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-60"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.53"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.0"
},
{
"model": "jp1/hicommand replication monitor",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-10-02"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-05"
},
{
"model": "provisioning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.1"
},
{
"model": "aura communication manager utility services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"model": "tuning manager software (solaris(sp",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-03"
},
{
"model": "web server solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00"
},
{
"model": "video surveillance manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "jp1/performance management web console",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "-08-50-09"
},
{
"model": "systemwalker runbook automation v14g 14.1.0a",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "hat enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "it operations analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-51"
},
{
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"model": "provisioning manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "device manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"model": "web server hp-ux",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "03-00-01"
},
{
"model": "tuning manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.7"
},
{
"model": "job management partner 1/automatic job management system man",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "3-0"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "2.0.47"
},
{
"model": "aura communication manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"model": "enterprise linux desktop workstation client",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "5"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2"
},
{
"model": "ciscoworks common services base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.0.3"
},
{
"model": "web server",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-10"
},
{
"model": "replication manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-01"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.2"
},
{
"model": "system management homepage",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "6.1.0.103"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.32"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.3.0"
},
{
"model": "web server )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "04-00"
},
{
"model": "workcentre",
"scope": "eq",
"trust": 0.3,
"vendor": "xerox",
"version": "5638"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10.1.2.3"
},
{
"model": "voice portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "4.1"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "1.0"
},
{
"model": "point software ipso6 r65.70",
"scope": null,
"trust": 0.3,
"vendor": "check",
"version": null
},
{
"model": "interstage studio enterprise edition b",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1.0"
},
{
"model": "linux ia-32",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "11.04"
},
{
"model": "point software secureplatform ngx r60 build",
"scope": "eq",
"trust": 0.3,
"vendor": "check",
"version": "244"
},
{
"model": "interstage business application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.5"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-07"
},
{
"model": "device manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.48"
},
{
"model": "interstage studio standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1"
},
{
"model": "interstage application server enterprise edition a",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.0"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.6.1"
},
{
"model": "jp1/cm2/snmp system observer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "mds",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "9000"
},
{
"model": "solaris 10 x86",
"scope": null,
"trust": 0.3,
"vendor": "sun",
"version": null
},
{
"model": "transportation manager",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "6.1"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-10-03"
},
{
"model": "jp1/hicommand device manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05.10"
},
{
"model": "tiered storage manager software",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "7.0.1-02"
},
{
"model": "wireless control system for windows",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.47"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1.1-00(x64))"
},
{
"model": "aura communication manager utility services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"model": "interstage application server enterprise edition 9.1.0b",
"scope": null,
"trust": 0.3,
"vendor": "fujitsu",
"version": null
},
{
"model": "jp1/serverconductor/control manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"model": "systemwalker availability view enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "13.3"
},
{
"model": "jp1/it resource management-manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "09-10"
},
{
"model": "interstage application server standard-j edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.2"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "8.0.1"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.33"
},
{
"model": "provisioning manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-08"
},
{
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.2"
},
{
"model": "hat enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "red",
"version": "6"
},
{
"model": "interstage application server enterprise edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "7.0.1"
},
{
"model": "device manager software (linux(sles",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.3.0-00"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.40"
},
{
"model": "quad",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "messaging storage server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "5.2.2"
},
{
"model": "device manager software (solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.2-00(x64))"
},
{
"model": "http server",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "6.0.2.43"
},
{
"model": "onboard administrator",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3.21"
},
{
"model": "systemwalker it process master standard edition",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "13.3.1"
},
{
"model": "jp1/hicommand devicemanager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-01"
},
{
"model": "device manager software )",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.1-03"
},
{
"model": "ciscoworks common services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3.3"
},
{
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "4.0.7"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.0.61"
},
{
"model": "it operations analyzer",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "02-01"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.2.4"
},
{
"model": "tiered storage manager software (linux(rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "6.4.0-07"
},
{
"model": "interstage studio standard-j edition b",
"scope": "eq",
"trust": 0.3,
"vendor": "fujitsu",
"version": "9.1.0"
},
{
"model": "software foundation apache 2.0.64-dev",
"scope": null,
"trust": 0.3,
"vendor": "apache",
"version": null
},
{
"model": "job management partner 1/automatic job management system web",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "3-0"
},
{
"model": "software foundation apache",
"scope": "eq",
"trust": 0.3,
"vendor": "apache",
"version": "2.1.6"
},
{
"model": "jp1/hicommand tiered storage manager",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "05-50-01"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "BID",
"id": "49303"
},
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.2.20",
"versionStartIncluding": "2.2.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.0.65",
"versionStartIncluding": "2.0.35",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp2:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Kingcope",
"sources": [
{
"db": "BID",
"id": "49303"
}
],
"trust": 0.3
},
"cve": "CVE-2011-3192",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULMON",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CVE-2011-3192",
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.1,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2011-3192",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#405811",
"trust": 0.8,
"value": "16.01"
},
{
"author": "VULMON",
"id": "CVE-2011-3192",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086. Apache HTTPD server contains a denial-of-service vulnerability in the way multiple overlapping ranges are handled. Both the \u0027Range\u0027 header and the \u0027Range-Request\u0027 header are vulnerable. An attack tool, commonly known as \u0027Apache Killer\u0027, has been released in the wild. The attack tool causes a significant increase in CPU and memory usage on the server. \nSuccessful exploits will result in a denial-of-service condition. Summary:\n\nUpdated httpd packages that fix one security issue are now available for\nRed Hat Application Stack v2. \n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Application Stack v2 for Enterprise Linux (v.5) - i386, x86_64\n\n3. (CVE-2011-3192)\n\nAll httpd users should upgrade to these updated packages, which contain a\nbackported patch to correct this issue. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n732928 - CVE-2011-3192 httpd: multiple ranges DoS\n\n6. Package List:\n\nRed Hat Application Stack v2 for Enterprise Linux (v.5):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/RHWAS/SRPMS/httpd-2.2.13-3.el5s2.src.rpm\n\ni386:\nhttpd-2.2.13-3.el5s2.i386.rpm\nhttpd-debuginfo-2.2.13-3.el5s2.i386.rpm\nhttpd-devel-2.2.13-3.el5s2.i386.rpm\nhttpd-manual-2.2.13-3.el5s2.i386.rpm\nmod_ssl-2.2.13-3.el5s2.i386.rpm\n\nx86_64:\nhttpd-2.2.13-3.el5s2.x86_64.rpm\nhttpd-debuginfo-2.2.13-3.el5s2.i386.rpm\nhttpd-debuginfo-2.2.13-3.el5s2.x86_64.rpm\nhttpd-devel-2.2.13-3.el5s2.i386.rpm\nhttpd-devel-2.2.13-3.el5s2.x86_64.rpm\nhttpd-manual-2.2.13-3.el5s2.x86_64.rpm\nmod_ssl-2.2.13-3.el5s2.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and \ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2011-3192.html\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2011 Red Hat, Inc. \n \n Packages for 2009.0 are provided as of the Extended Maintenance\n Program. \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Linux 2009.0:\n 794722078d25e916e10d41dab7099529 2009.0/i586/apache-base-2.2.9-12.12mdv2009.0.i586.rpm\n 95e2263fdc53b7e5ca1087bd207b67f0 2009.0/i586/apache-devel-2.2.9-12.12mdv2009.0.i586.rpm\n fd2387b91e3d050df4dcb8f71c66b00d 2009.0/i586/apache-htcacheclean-2.2.9-12.12mdv2009.0.i586.rpm\n a79155011bcfd0b9d35ad775826cbcfb 2009.0/i586/apache-mod_authn_dbd-2.2.9-12.12mdv2009.0.i586.rpm\n 1efee802fe6a3ca7e59065ba75fd4ffd 2009.0/i586/apache-mod_cache-2.2.9-12.12mdv2009.0.i586.rpm\n c4f4067f4f32f7b1bd02c510c85e778d 2009.0/i586/apache-mod_dav-2.2.9-12.12mdv2009.0.i586.rpm\n 0e2cc898950204b5ece75c73d37099f4 2009.0/i586/apache-mod_dbd-2.2.9-12.12mdv2009.0.i586.rpm\n 6d847a5c982da5f0f6eba3f8e3ea9f31 2009.0/i586/apache-mod_deflate-2.2.9-12.12mdv2009.0.i586.rpm\n c07fec10959c58aafaef912c1bc4ba9b 2009.0/i586/apache-mod_disk_cache-2.2.9-12.12mdv2009.0.i586.rpm\n 4b0bc90c0c55d6a6e35d7b95089897e2 2009.0/i586/apache-mod_file_cache-2.2.9-12.12mdv2009.0.i586.rpm\n b2e3e87000d17bd19ef1e90c216e5575 2009.0/i586/apache-mod_ldap-2.2.9-12.12mdv2009.0.i586.rpm\n db73005fe9ac79e270363e366cbba80e 2009.0/i586/apache-mod_mem_cache-2.2.9-12.12mdv2009.0.i586.rpm\n 3a2601e4b6b38a018270faf3f9eeae05 2009.0/i586/apache-mod_proxy-2.2.9-12.12mdv2009.0.i586.rpm\n 7f4b71f64e79751b70b805b27de0befb 2009.0/i586/apache-mod_proxy_ajp-2.2.9-12.12mdv2009.0.i586.rpm\n 5a2ee6a9495dca9fa35e9dc1cf5eadee 2009.0/i586/apache-mod_ssl-2.2.9-12.12mdv2009.0.i586.rpm\n b8dd7ed23f1d52826b0a7aa26db65d25 2009.0/i586/apache-modules-2.2.9-12.12mdv2009.0.i586.rpm\n df32690f6a0c881b9b88f5dbe839bfca 2009.0/i586/apache-mod_userdir-2.2.9-12.12mdv2009.0.i586.rpm\n 75b95ec22e34447b298ac4cda1f62a4d 2009.0/i586/apache-mpm-event-2.2.9-12.12mdv2009.0.i586.rpm\n 8986041e7735220e865e903713c6585a 2009.0/i586/apache-mpm-itk-2.2.9-12.12mdv2009.0.i586.rpm\n 7db0f13f8777a84e6eb2a4d54c1ed825 2009.0/i586/apache-mpm-peruser-2.2.9-12.12mdv2009.0.i586.rpm\n 5709d251b49a8fe51847c68c89b03ef4 2009.0/i586/apache-mpm-prefork-2.2.9-12.12mdv2009.0.i586.rpm\n 9436f8468da7538fd050408c672522fc 2009.0/i586/apache-mpm-worker-2.2.9-12.12mdv2009.0.i586.rpm\n 9a37ff8ccfe612446431e053df3c55f7 2009.0/i586/apache-source-2.2.9-12.12mdv2009.0.i586.rpm \n d1f20a10f4a743d492333ee9296c0c45 2009.0/SRPMS/apache-2.2.9-12.12mdv2009.0.src.rpm\n\n Mandriva Linux 2009.0/X86_64:\n f2479060934de461fc5243f44c1c9877 2009.0/x86_64/apache-base-2.2.9-12.12mdv2009.0.x86_64.rpm\n 744dd6b28a74fe7707a7f485dd714f70 2009.0/x86_64/apache-devel-2.2.9-12.12mdv2009.0.x86_64.rpm\n 24b61074fcdc90664fdc22fa97731431 2009.0/x86_64/apache-htcacheclean-2.2.9-12.12mdv2009.0.x86_64.rpm\n ffe9175656c4b9f9a6d1c0905997612f 2009.0/x86_64/apache-mod_authn_dbd-2.2.9-12.12mdv2009.0.x86_64.rpm\n e10c4164abab4e7ecdfc354dc26b25c7 2009.0/x86_64/apache-mod_cache-2.2.9-12.12mdv2009.0.x86_64.rpm\n 0adf7c2b0207c7af3850da6ef054ade4 2009.0/x86_64/apache-mod_dav-2.2.9-12.12mdv2009.0.x86_64.rpm\n a052d802d4170269e4e84a7f09db2486 2009.0/x86_64/apache-mod_dbd-2.2.9-12.12mdv2009.0.x86_64.rpm\n dec7e0b69c3d6bb2b691b6d5828f9b4d 2009.0/x86_64/apache-mod_deflate-2.2.9-12.12mdv2009.0.x86_64.rpm\n e9d6a08421ce454bad59cd63f7298cde 2009.0/x86_64/apache-mod_disk_cache-2.2.9-12.12mdv2009.0.x86_64.rpm\n 9add3c7b179e884d55e24f5fab1507e6 2009.0/x86_64/apache-mod_file_cache-2.2.9-12.12mdv2009.0.x86_64.rpm\n c097e8abb528f4e04279012e2e77ebed 2009.0/x86_64/apache-mod_ldap-2.2.9-12.12mdv2009.0.x86_64.rpm\n 02396d0d003be14aa6361d8bf9a2d5c0 2009.0/x86_64/apache-mod_mem_cache-2.2.9-12.12mdv2009.0.x86_64.rpm\n 769f0f0836ccf07367d0efac06467a33 2009.0/x86_64/apache-mod_proxy-2.2.9-12.12mdv2009.0.x86_64.rpm\n 0e4c4a945729b9c8d2535796f4cd7e9e 2009.0/x86_64/apache-mod_proxy_ajp-2.2.9-12.12mdv2009.0.x86_64.rpm\n 7180962ec0dae497928579f2ec90d6b9 2009.0/x86_64/apache-mod_ssl-2.2.9-12.12mdv2009.0.x86_64.rpm\n 96a29510a80201af1dbaee936e28a6a7 2009.0/x86_64/apache-modules-2.2.9-12.12mdv2009.0.x86_64.rpm\n 0b895df84b0d65cfe26d4445e0f7a1a4 2009.0/x86_64/apache-mod_userdir-2.2.9-12.12mdv2009.0.x86_64.rpm\n 879ad41af024969d952c3ba00ab8c7ff 2009.0/x86_64/apache-mpm-event-2.2.9-12.12mdv2009.0.x86_64.rpm\n 34c244f26df5c2de95e5ab3a698a7ebd 2009.0/x86_64/apache-mpm-itk-2.2.9-12.12mdv2009.0.x86_64.rpm\n eb9122d0d0ccd25b1d3e6fe604d683c4 2009.0/x86_64/apache-mpm-peruser-2.2.9-12.12mdv2009.0.x86_64.rpm\n 2f9890e1c47b78db2f8331318d6f3fbe 2009.0/x86_64/apache-mpm-prefork-2.2.9-12.12mdv2009.0.x86_64.rpm\n c52990034c85d64875d9d5e42c8d86a9 2009.0/x86_64/apache-mpm-worker-2.2.9-12.12mdv2009.0.x86_64.rpm\n 47796ce3087582082c434d3860357a72 2009.0/x86_64/apache-source-2.2.9-12.12mdv2009.0.x86_64.rpm \n d1f20a10f4a743d492333ee9296c0c45 2009.0/SRPMS/apache-2.2.9-12.12mdv2009.0.src.rpm\n\n Mandriva Linux 2010.1:\n 81a67350e6c227b77ca9262b87754a42 2010.1/i586/apache-base-2.2.15-3.3mdv2010.2.i586.rpm\n 22ed9c09140b2e0da116b3ae600c99b6 2010.1/i586/apache-devel-2.2.15-3.3mdv2010.2.i586.rpm\n 835a1cb70f3077b17c2751030e947a1a 2010.1/i586/apache-htcacheclean-2.2.15-3.3mdv2010.2.i586.rpm\n f83ae1aeec0aef106324e2eecafd84cd 2010.1/i586/apache-mod_authn_dbd-2.2.15-3.3mdv2010.2.i586.rpm\n 498d15231c15b7f763f2b78045264902 2010.1/i586/apache-mod_cache-2.2.15-3.3mdv2010.2.i586.rpm\n ec112c861fff6b5a031f4181d6b48809 2010.1/i586/apache-mod_dav-2.2.15-3.3mdv2010.2.i586.rpm\n b45c566d698b92b733b67bf6568f046a 2010.1/i586/apache-mod_dbd-2.2.15-3.3mdv2010.2.i586.rpm\n f70ae53162e2675fda33eb1f227eecb3 2010.1/i586/apache-mod_deflate-2.2.15-3.3mdv2010.2.i586.rpm\n aa5188a8f55699823245b443410d959b 2010.1/i586/apache-mod_disk_cache-2.2.15-3.3mdv2010.2.i586.rpm\n 527d0908428b913bd6c0554058df2c72 2010.1/i586/apache-mod_file_cache-2.2.15-3.3mdv2010.2.i586.rpm\n af5377b482327b152bb472f86287b6b4 2010.1/i586/apache-mod_ldap-2.2.15-3.3mdv2010.2.i586.rpm\n 4a1f0e7481668b8df9a4d2d277642c9b 2010.1/i586/apache-mod_mem_cache-2.2.15-3.3mdv2010.2.i586.rpm\n 13d629b5f77ff05c8da71e0d82c9b096 2010.1/i586/apache-mod_proxy-2.2.15-3.3mdv2010.2.i586.rpm\n 4593b415b086a5a9068e1bbb839762b2 2010.1/i586/apache-mod_proxy_ajp-2.2.15-3.3mdv2010.2.i586.rpm\n 9ad8a9aef61f1dbcaafe6556faa850f6 2010.1/i586/apache-mod_proxy_scgi-2.2.15-3.3mdv2010.2.i586.rpm\n 40de5c085fdfb042200556843de97956 2010.1/i586/apache-mod_reqtimeout-2.2.15-3.3mdv2010.2.i586.rpm\n b963aca159b1b72df406247fa459b47d 2010.1/i586/apache-mod_ssl-2.2.15-3.3mdv2010.2.i586.rpm\n b050d1b4cd9f5f6ce472239871bfce2c 2010.1/i586/apache-modules-2.2.15-3.3mdv2010.2.i586.rpm\n c9c6b5054581c07c3b87b132f5915fe0 2010.1/i586/apache-mod_userdir-2.2.15-3.3mdv2010.2.i586.rpm\n 297bfb9c523877a9539091ce3f432715 2010.1/i586/apache-mpm-event-2.2.15-3.3mdv2010.2.i586.rpm\n 9b07ff9544e2faff59f778ccc9ef29a8 2010.1/i586/apache-mpm-itk-2.2.15-3.3mdv2010.2.i586.rpm\n 7420dfebbce0b235a1e1311ca80180cf 2010.1/i586/apache-mpm-peruser-2.2.15-3.3mdv2010.2.i586.rpm\n 6995e9868b1fb6d21634bafa0856ac64 2010.1/i586/apache-mpm-prefork-2.2.15-3.3mdv2010.2.i586.rpm\n 912d834661d60ea0be3a4ea16d0cb73d 2010.1/i586/apache-mpm-worker-2.2.15-3.3mdv2010.2.i586.rpm\n 56a7db4e67242869c601cc826fa93cff 2010.1/i586/apache-source-2.2.15-3.3mdv2010.2.i586.rpm \n b1f2f7b99fe4fed57b5f1c9b5d8f1f4d 2010.1/SRPMS/apache-2.2.15-3.3mdv2010.2.src.rpm\n\n Mandriva Linux 2010.1/X86_64:\n 0c2aa94e105e9515efac127fa20442e9 2010.1/x86_64/apache-base-2.2.15-3.3mdv2010.2.x86_64.rpm\n 33c94640b13df6c28182c16dea368e38 2010.1/x86_64/apache-devel-2.2.15-3.3mdv2010.2.x86_64.rpm\n 9a96344d4c53af1e8f7bc672e5b03258 2010.1/x86_64/apache-htcacheclean-2.2.15-3.3mdv2010.2.x86_64.rpm\n 5cfdc0d5ffcbb974ec4b3c37d9bd9ae3 2010.1/x86_64/apache-mod_authn_dbd-2.2.15-3.3mdv2010.2.x86_64.rpm\n b2f0790cdd2e8f9a626588730e9fed0e 2010.1/x86_64/apache-mod_cache-2.2.15-3.3mdv2010.2.x86_64.rpm\n 0e213220481b3bf26fef61edacae91e9 2010.1/x86_64/apache-mod_dav-2.2.15-3.3mdv2010.2.x86_64.rpm\n dc11bdc25528146f888203d7f5a002ee 2010.1/x86_64/apache-mod_dbd-2.2.15-3.3mdv2010.2.x86_64.rpm\n cddd73d266e4f341dfdb25841964aeba 2010.1/x86_64/apache-mod_deflate-2.2.15-3.3mdv2010.2.x86_64.rpm\n b6ea61f1ae2162b680f7e585413a78a2 2010.1/x86_64/apache-mod_disk_cache-2.2.15-3.3mdv2010.2.x86_64.rpm\n f8ffce7c0de413be9363ea5f19fe40f0 2010.1/x86_64/apache-mod_file_cache-2.2.15-3.3mdv2010.2.x86_64.rpm\n 1c48da2d7aaab57b1a64994fd36d0173 2010.1/x86_64/apache-mod_ldap-2.2.15-3.3mdv2010.2.x86_64.rpm\n 3ebe1e7ffe99f9776d993d71347b6e0e 2010.1/x86_64/apache-mod_mem_cache-2.2.15-3.3mdv2010.2.x86_64.rpm\n 6bc78c9f7d6fccc39d9fd7f3ac38268d 2010.1/x86_64/apache-mod_proxy-2.2.15-3.3mdv2010.2.x86_64.rpm\n e91158618a4360a0e31e91aa4c426380 2010.1/x86_64/apache-mod_proxy_ajp-2.2.15-3.3mdv2010.2.x86_64.rpm\n 7d8b66b5f07f414808994f92950fbe13 2010.1/x86_64/apache-mod_proxy_scgi-2.2.15-3.3mdv2010.2.x86_64.rpm\n e32cfd54df5d8959ce261b8af31be16b 2010.1/x86_64/apache-mod_reqtimeout-2.2.15-3.3mdv2010.2.x86_64.rpm\n 3c51abbefbdf59d35cfea47a3d08274a 2010.1/x86_64/apache-mod_ssl-2.2.15-3.3mdv2010.2.x86_64.rpm\n 78a819577503f238f7eb50cb2128a9f8 2010.1/x86_64/apache-modules-2.2.15-3.3mdv2010.2.x86_64.rpm\n b9e4ffc332fb36a3a76c3e4227af4fea 2010.1/x86_64/apache-mod_userdir-2.2.15-3.3mdv2010.2.x86_64.rpm\n d2ad2b6cc3eee3dc9d326ce62f403a90 2010.1/x86_64/apache-mpm-event-2.2.15-3.3mdv2010.2.x86_64.rpm\n 3b1b3b6d910e4c93a7abaf7d83bcc437 2010.1/x86_64/apache-mpm-itk-2.2.15-3.3mdv2010.2.x86_64.rpm\n 94195bd7bbd28489a1bc40bd78c33933 2010.1/x86_64/apache-mpm-peruser-2.2.15-3.3mdv2010.2.x86_64.rpm\n 0d6159786b6386e315e0f0b3af1be3ca 2010.1/x86_64/apache-mpm-prefork-2.2.15-3.3mdv2010.2.x86_64.rpm\n 70a9ed912a5d693d894031ac47c32f09 2010.1/x86_64/apache-mpm-worker-2.2.15-3.3mdv2010.2.x86_64.rpm\n 0db5f7644597f37e44b99c5da59d84d9 2010.1/x86_64/apache-source-2.2.15-3.3mdv2010.2.x86_64.rpm \n b1f2f7b99fe4fed57b5f1c9b5d8f1f4d 2010.1/SRPMS/apache-2.2.15-3.3mdv2010.2.src.rpm\n\n Corporate 4.0:\n 6cb0c4739d8240c5cf749c1f86071b79 corporate/4.0/i586/apache-base-2.2.3-1.13.20060mlcs4.i586.rpm\n 1f5bff1627d07a0e9ab7541417cf3890 corporate/4.0/i586/apache-devel-2.2.3-1.13.20060mlcs4.i586.rpm\n 63fc24071e4c58bcacf8bd6b15b59f12 corporate/4.0/i586/apache-htcacheclean-2.2.3-1.13.20060mlcs4.i586.rpm\n 39e139423c51fc720ac59874e13e58d5 corporate/4.0/i586/apache-mod_authn_dbd-2.2.3-1.13.20060mlcs4.i586.rpm\n 95ad8d5dffb33c87879fccd7ec910ffb corporate/4.0/i586/apache-mod_cache-2.2.3-1.13.20060mlcs4.i586.rpm\n c0e3f64d4a14836ed9713418a2a37a3b corporate/4.0/i586/apache-mod_dav-2.2.3-1.13.20060mlcs4.i586.rpm\n 73d6b23714a17b3fd5a5db143c9b2e2f corporate/4.0/i586/apache-mod_dbd-2.2.3-1.13.20060mlcs4.i586.rpm\n b6ab335ed0766b9de3f2664dd749016d corporate/4.0/i586/apache-mod_deflate-2.2.3-1.13.20060mlcs4.i586.rpm\n b51574552a760bdc34edb396fdcf1713 corporate/4.0/i586/apache-mod_disk_cache-2.2.3-1.13.20060mlcs4.i586.rpm\n ab5c9ed4a99664edd26b98d4d10ce207 corporate/4.0/i586/apache-mod_file_cache-2.2.3-1.13.20060mlcs4.i586.rpm\n d42183bb46acf94d6210132a8960d796 corporate/4.0/i586/apache-mod_ldap-2.2.3-1.13.20060mlcs4.i586.rpm\n 48e903f8cb741290da23053686e44874 corporate/4.0/i586/apache-mod_mem_cache-2.2.3-1.13.20060mlcs4.i586.rpm\n 88d46c9bc3980a49dd3c8ee22b2e756c corporate/4.0/i586/apache-mod_proxy-2.2.3-1.13.20060mlcs4.i586.rpm\n 0c47f19fa12a16a547b4356fd3d65ef0 corporate/4.0/i586/apache-mod_proxy_ajp-2.2.3-1.13.20060mlcs4.i586.rpm\n 94f14b2cccff878e5fbfada10a411234 corporate/4.0/i586/apache-mod_ssl-2.2.3-1.13.20060mlcs4.i586.rpm\n 6c099d9fa38df92030808e1cfbea70f6 corporate/4.0/i586/apache-modules-2.2.3-1.13.20060mlcs4.i586.rpm\n 74745343711a6d62274fef26680cb7cb corporate/4.0/i586/apache-mod_userdir-2.2.3-1.13.20060mlcs4.i586.rpm\n 42407b409fcc55b28679496a515d2d3d corporate/4.0/i586/apache-mpm-prefork-2.2.3-1.13.20060mlcs4.i586.rpm\n 949273655647845491bf7433ed6947f5 corporate/4.0/i586/apache-mpm-worker-2.2.3-1.13.20060mlcs4.i586.rpm\n 1065b5ff5c0b493b11499fed06902455 corporate/4.0/i586/apache-source-2.2.3-1.13.20060mlcs4.i586.rpm \n 05cac55ce2e5fd0fa84e8cf7999b769c corporate/4.0/SRPMS/apache-2.2.3-1.13.20060mlcs4.src.rpm\n\n Corporate 4.0/X86_64:\n ab51e2d012c3d2260ae7494421ee76b7 corporate/4.0/x86_64/apache-base-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 53e32a766a5687182810ccf3256ec45c corporate/4.0/x86_64/apache-devel-2.2.3-1.13.20060mlcs4.x86_64.rpm\n e5b009bd8f9201a0333374a0d76e9ed6 corporate/4.0/x86_64/apache-htcacheclean-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 9a228b8b08ffdb7601a0fcc9c13eb0a6 corporate/4.0/x86_64/apache-mod_authn_dbd-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 216040d632883ac2f81ebcba986fa28c corporate/4.0/x86_64/apache-mod_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm\n ea200972e74b3de8b0c1c5d601e1b55f corporate/4.0/x86_64/apache-mod_dav-2.2.3-1.13.20060mlcs4.x86_64.rpm\n d7a9816d96d0b52e088e0161d0b686b3 corporate/4.0/x86_64/apache-mod_dbd-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 997b77ebcccebf5cec8601d2a2205355 corporate/4.0/x86_64/apache-mod_deflate-2.2.3-1.13.20060mlcs4.x86_64.rpm\n c4e8adc271e2806fb17a682bd480d450 corporate/4.0/x86_64/apache-mod_disk_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm\n deb5a46c8843982b01620d12d182c2f2 corporate/4.0/x86_64/apache-mod_file_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm\n cf91402d2713a735ca5176f1fae748d4 corporate/4.0/x86_64/apache-mod_ldap-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 61eab13877dc720a0ad2c1c55bd27612 corporate/4.0/x86_64/apache-mod_mem_cache-2.2.3-1.13.20060mlcs4.x86_64.rpm\n dd810b0e0cf871c2a29847014edaf12e corporate/4.0/x86_64/apache-mod_proxy-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 2ae4e2b6a4f8e89894c10062e26c52f8 corporate/4.0/x86_64/apache-mod_proxy_ajp-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 63afd5a4dbfdbe53fc4fe77897a56288 corporate/4.0/x86_64/apache-mod_ssl-2.2.3-1.13.20060mlcs4.x86_64.rpm\n dcc501e359941fd3a30ba45e6681cef5 corporate/4.0/x86_64/apache-modules-2.2.3-1.13.20060mlcs4.x86_64.rpm\n 4b7a6233d441e4f8b87dbe6557957b8c corporate/4.0/x86_64/apache-mod_userdir-2.2.3-1.13.20060mlcs4.x86_64.rpm\n dd1478de94663c57c76384dea1c13383 corporate/4.0/x86_64/apache-mpm-prefork-2.2.3-1.13.20060mlcs4.x86_64.rpm\n f14236bbe5ee8edcc69e35ff92baa699 corporate/4.0/x86_64/apache-mpm-worker-2.2.3-1.13.20060mlcs4.x86_64.rpm\n f6f9428ee237c21cb75aa1f1f9f29981 corporate/4.0/x86_64/apache-source-2.2.3-1.13.20060mlcs4.x86_64.rpm \n 05cac55ce2e5fd0fa84e8cf7999b769c corporate/4.0/SRPMS/apache-2.2.3-1.13.20060mlcs4.src.rpm\n\n Mandriva Enterprise Server 5:\n 8f2c047d79dc68e5109417c63e6341bc mes5/i586/apache-base-2.2.9-12.12mdvmes5.2.i586.rpm\n 40f90571fc968b477594a9edc1937aee mes5/i586/apache-devel-2.2.9-12.12mdvmes5.2.i586.rpm\n d48ca72adb7932a678b163779905c888 mes5/i586/apache-htcacheclean-2.2.9-12.12mdvmes5.2.i586.rpm\n 3c2949148e484d8ca2dcec6a77b68bf8 mes5/i586/apache-mod_authn_dbd-2.2.9-12.12mdvmes5.2.i586.rpm\n cff46a05b8b28bb318ab00b63f29c421 mes5/i586/apache-mod_cache-2.2.9-12.12mdvmes5.2.i586.rpm\n c01d753a6928dbb8b79309ad0ffc6bb7 mes5/i586/apache-mod_dav-2.2.9-12.12mdvmes5.2.i586.rpm\n 3d69d11a7f2ca0db8ef734f90b76cf47 mes5/i586/apache-mod_dbd-2.2.9-12.12mdvmes5.2.i586.rpm\n f9d11522f31e4eba56eab96b975aa271 mes5/i586/apache-mod_deflate-2.2.9-12.12mdvmes5.2.i586.rpm\n ce7e199d50c484dbaae4ac8a24fdfd8f mes5/i586/apache-mod_disk_cache-2.2.9-12.12mdvmes5.2.i586.rpm\n e13784109c7c987f161e62db23875e99 mes5/i586/apache-mod_file_cache-2.2.9-12.12mdvmes5.2.i586.rpm\n 0679925298a2b084fb835c8342ff2db6 mes5/i586/apache-mod_ldap-2.2.9-12.12mdvmes5.2.i586.rpm\n 18d8638b92b40111dc4c3d9061c4f954 mes5/i586/apache-mod_mem_cache-2.2.9-12.12mdvmes5.2.i586.rpm\n 4f2fb07cf38766b852c35f8ec84c4615 mes5/i586/apache-mod_proxy-2.2.9-12.12mdvmes5.2.i586.rpm\n 28b41c1d6e0898417715d91a8ae9c786 mes5/i586/apache-mod_proxy_ajp-2.2.9-12.12mdvmes5.2.i586.rpm\n e46a77e76f3a09d8ae3a1f13e8d73914 mes5/i586/apache-mod_ssl-2.2.9-12.12mdvmes5.2.i586.rpm\n 00732d13045c0503c471214f37dc7e7c mes5/i586/apache-modules-2.2.9-12.12mdvmes5.2.i586.rpm\n 4279cd7a1e58191ca58db6f23ce668af mes5/i586/apache-mod_userdir-2.2.9-12.12mdvmes5.2.i586.rpm\n f75d539d341234ffa941fc2ff95e1af9 mes5/i586/apache-mpm-event-2.2.9-12.12mdvmes5.2.i586.rpm\n 7dc2aac397b2764e9ffd2f62948fd5ac mes5/i586/apache-mpm-itk-2.2.9-12.12mdvmes5.2.i586.rpm\n bde67f65165d76bf16430e47d1fe0cb5 mes5/i586/apache-mpm-peruser-2.2.9-12.12mdvmes5.2.i586.rpm\n f437fcd2fd93bbe1b931035b1d5e7366 mes5/i586/apache-mpm-prefork-2.2.9-12.12mdvmes5.2.i586.rpm\n 990deab998e13f0e1f9b0705898265f7 mes5/i586/apache-mpm-worker-2.2.9-12.12mdvmes5.2.i586.rpm\n 60e73f359da6fb7f22e4f3e4221e9c47 mes5/i586/apache-source-2.2.9-12.12mdvmes5.2.i586.rpm \n f2081e47da0c06c0a01718c4fa6e615f mes5/SRPMS/apache-2.2.9-12.12mdvmes5.2.src.rpm\n\n Mandriva Enterprise Server 5/X86_64:\n 68c25a84b6281604cf34e9b8c28f1049 mes5/x86_64/apache-base-2.2.9-12.12mdvmes5.2.x86_64.rpm\n d1fea716c89eab4cf4c794770a1b6b4b mes5/x86_64/apache-devel-2.2.9-12.12mdvmes5.2.x86_64.rpm\n dea5767ddfd52f162ace3ae36cfae969 mes5/x86_64/apache-htcacheclean-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 7834f28e7bed5dc4919d0ec2f53cd7c2 mes5/x86_64/apache-mod_authn_dbd-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 322e4da0618785d76b197703d0b4ffeb mes5/x86_64/apache-mod_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 47cdb78ab11983271844e601f2a818dd mes5/x86_64/apache-mod_dav-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 60a44577f80f32aa1be156b74a15d55e mes5/x86_64/apache-mod_dbd-2.2.9-12.12mdvmes5.2.x86_64.rpm\n cd5e323d115b924886a8939072265d96 mes5/x86_64/apache-mod_deflate-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 34c3f3579c313da8c2f3fc6376c6480f mes5/x86_64/apache-mod_disk_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 41f634d505250b2ad795871311f83ef1 mes5/x86_64/apache-mod_file_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm\n e2d14257c9122287ea7a7e1ec80327b3 mes5/x86_64/apache-mod_ldap-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 5d93d3561c9b8410e2603bc5f0edc50f mes5/x86_64/apache-mod_mem_cache-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 9f5e94a9d87db50d479ddb17219d831d mes5/x86_64/apache-mod_proxy-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 4923ba24f69c8dacbe56e9871e3b8cc4 mes5/x86_64/apache-mod_proxy_ajp-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 22238b128d6dc133a5dae8066c2a18a7 mes5/x86_64/apache-mod_ssl-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 694ab458009917d81721764e0aad57a9 mes5/x86_64/apache-modules-2.2.9-12.12mdvmes5.2.x86_64.rpm\n de18f38d71f2fc95d6fe782510cb26bd mes5/x86_64/apache-mod_userdir-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 30858da82b560e8d18b85c2601e71851 mes5/x86_64/apache-mpm-event-2.2.9-12.12mdvmes5.2.x86_64.rpm\n a22541e594bfc4ea2de372941d938396 mes5/x86_64/apache-mpm-itk-2.2.9-12.12mdvmes5.2.x86_64.rpm\n c33ea0b752f5a394dbe7e27fad15182f mes5/x86_64/apache-mpm-peruser-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 24d6c3ade6d8053562c5e14ce6b25250 mes5/x86_64/apache-mpm-prefork-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 3b54d14149d52a44d130a2c45f48e79d mes5/x86_64/apache-mpm-worker-2.2.9-12.12mdvmes5.2.x86_64.rpm\n 33fab873f19b2cd2ac6c9fc87ecf7852 mes5/x86_64/apache-source-2.2.9-12.12mdvmes5.2.x86_64.rpm \n f2081e47da0c06c0a01718c4fa6e615f mes5/SRPMS/apache-2.2.9-12.12mdvmes5.2.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. \nHP System Management Homepage (SMH) before v7.0 running on Linux and Windows. \n\nThe Hewlett-Packard Company thanks Silent Dream for reporting CVE-2012-0135 to security-alert@hp.com\n\nRESOLUTION\n\nHP has provided HP System Management Homepage v7.0 or subsequent to resolve the vulnerabilities. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. This issue only\naffects the Debian 5.0 oldstable/lenny distribution. \n\n\nFor the oldstable distribution (lenny), these problems have been fixed\nin version 2.2.9-10+lenny10. \n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 2.2.16-6+squeeze2. \n\nFor the testing distribution (wheezy), this problem will be fixed soon. \n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 2.2.19-2. \n\nWe recommend that you upgrade your apache2 packages. The new version\nnumber for the oldstable distribution is 2.2.6-02-1+lenny5. In the\nstable distribution, apache2-mpm-itk has the same version number as\napache2. \n\nRelease Date: 2011-09-26\nLast Updated: 2011-10-26\n\n -----------------------------------------------------------------------------\n\nPotential Security Impact: Remote Denial of Service (DoS)\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP-UX Apache Web Server. This vulnerability could be exploited remotely to create a Denial of Service (DoS). \n\nReferences: CVE-2011-0419, CVE-2011-3192, CVE-2011-3348\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.23, B.11.31 running HP-UX Apache Web Server Suite v3.18 containing Apache v2.2.15.08 or earlier\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2011-0419 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3\nCVE-2011-3192 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8\nCVE-2011-3348 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following software updates to resolve this vulnerability. \n\nThe updates are available for download from the following location\nhttps://h20392.www2.hp.com/portal/swdepot/try.do?productNumber=HPUXWSATW319\n\nHP-UX Web Server Suite (WSS) v3.19 containing Apache v2.2.15.09 HP-UX 11i Releases\n Apache Depot name\n\nB.11.23 B.11.31 (32-bit) / HPUXWS22ATW-B319-32.depot\n\nB.11.23 B.11.31 (64-bit) / HPUXWS22ATW-B319-64.depot\n\nMANUAL ACTIONS: Yes - Update\nInstall HP-UX Web Server Suite v3.19 containing v2.2.15.09 or subsequent. \n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX Web Server Suite v3.19\nHP-UX B.11.23\nHP-UX B.11.31\n==================\nhpuxws22APCH32.APACHE\nhpuxws22APCH32.APACHE2\nhpuxws22APCH32.AUTH_LDAP\nhpuxws22APCH32.AUTH_LDAP2\nhpuxws22APCH32.MOD_JK\nhpuxws22APCH32.MOD_JK2\nhpuxws22APCH32.MOD_PERL\nhpuxws22APCH32.MOD_PERL2\nhpuxws22APCH32.PHP\nhpuxws22APCH32.PHP2\nhpuxws22APCH32.WEBPROXY\nhpuxws22APCH32.WEBPROXY2\nhpuxws22APACHE.APACHE\nhpuxws22APACHE.APACHE2\nhpuxws22APACHE.AUTH_LDAP\nhpuxws22APACHE.AUTH_LDAP2\nhpuxws22APACHE.MOD_JK\nhpuxws22APACHE.MOD_JK2\nhpuxws22APACHE.MOD_PERL\nhpuxws22APACHE.MOD_PERL2\nhpuxws22APACHE.PHP\nhpuxws22APACHE.PHP2\nhpuxws22APACHE.WEBPROXY\nhpuxws22APACHE.WEBPROXY2\naction: install revision B.2.2.15.09 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 26 September 2011 Initial release\nVersion:2 (rev.2) - 26 October 2011 Final depots available\n\nThird Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer\u0027s patch management policy. \n\nSupport: For further information, contact normal HP Services support channel. \n\nReport: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c02964430\n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2011 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided \"as is\" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n Apache HTTPD Security ADVISORY\n ==============================\n UPDATE 2\n\nTitle: Range header DoS vulnerability Apache HTTPD 1.3/2.x\n\nCVE: CVE-2011-3192\nLast Change: 20110826 1030Z\nDate: 20110824 1600Z\nProduct: Apache HTTPD Web Server\nVersions: Apache 1.3 all versions, Apache 2 all versions\n\nChanges since last update\n=========================\nIn addition to the \u0027Range\u0027 header - the \u0027Range-Request\u0027 header is equally\naffected. Furthermore various vendor updates, improved regexes (speed and\naccommodating a different and new attack pattern). Active use of this tool has \nbeen observed. \n\nThe default Apache HTTPD installation is vulnerable. This advisory will be updated when a long term fix \nis available. \n\nA full fix is expected in the next 24 hours. \n\nBackground and the 2007 report\n==============================\n\nThere are two aspects to this vulnerability. One is new, is Apache specific; \nand resolved with this server side fix. The other issue is fundamentally a \nprotocol design issue dating back to 2007:\n\n http://seclists.org/bugtraq/2007/Jan/83 \n\nThe contemporary interpretation of the HTTP protocol (currently) requires a \nserver to return multiple (overlapping) ranges; in the order requested. This \nmeans that one can request a very large range (e.g. from byte 0- to the end) \n100\u0027s of times in a single request. \n\nBeing able to do so is an issue for (probably all) webservers and currently \nsubject of an IETF discussion to change the protocol:\n\n http://trac.tools.ietf.org/wg/httpbis/trac/ticket/311\n\nThis advisory details a problem with how Apache httpd and its so called \ninternal \u0027bucket brigades\u0027 deal with serving such \"valid\" request. The\nproblem is that currently such requests internally explode into 100\u0027s of \nlarge fetches, all of which are kept in memory in an inefficient way. This\nis being addressed in two ways. By making things more efficient. And by \nweeding out or simplifying requests deemed too unwieldy. \n\nMitigation:\n===========\n\nThere are several immediate options to mitigate this issue until a full fix \nis available. Below examples handle both the \u0027Range\u0027 and the legacy\n\u0027Request-Range\u0027 with various levels of care. \n\nNote that \u0027Request-Range\u0027 is a legacy name dating back to Netscape Navigator \n2-3 and MSIE 3. Depending on your user community - it is likely that you\ncan use option \u00273\u0027 safely for this older \u0027Request-Range\u0027. \n\n1) Use SetEnvIf or mod_rewrite to detect a large number of ranges and then\n either ignore the Range: header or reject the request. \n # CVE-2011-3192\n SetEnvIf Range (?:,.*?){5,5} bad-range=1\n RequestHeader unset Range env=bad-range\n\n # We always drop Request-Range; as this is a legacy\n # dating back to MSIE3 and Netscape 2 and 3. \n RequestHeader unset Request-Range\n\n # optional logging. \n CustomLog logs/range-CVE-2011-3192.log common env=bad-range\n CustomLog logs/range-CVE-2011-3192.log common env=bad-req-range\n\n Above may not work for all configurations. In particular situations\n mod_cache and (language) modules may act before the \u0027unset\u0027\n is executed upon during the \u0027fixup\u0027 phase. \n\n Option 2: (Pre 2.2 and 1.3)\n\n # Reject request when more than 5 ranges in the Range: header. \n # CVE-2011-3192\n #\n RewriteEngine on\n RewriteCond %{HTTP:range} !(bytes=[^,]+(,[^,]+){0,4}$|^$)\n # RewriteCond %{HTTP:request-range} !(bytes=[^,]+(?:,[^,]+){0,4}$|^$)\n RewriteRule .* - [F]\n\n # We always drop Request-Range; as this is a legacy\n # dating back to MSIE3 and Netscape 2 and 3. \n RequestHeader unset Request-Range\n\n The number 5 is arbitrary. Several 10\u0027s should not be an issue and may be\n required for sites which for example serve PDFs to very high end eReaders\n or use things such complex http based video streaming. \n\n2) Limit the size of the request field to a few hundred bytes. Note that while \n this keeps the offending Range header short - it may break other headers; \n such as sizeable cookies or security fields. \n\n LimitRequestFieldSize 200\n\n Note that as the attack evolves in the field you are likely to have\n to further limit this and/or impose other LimitRequestFields limits. \n\n See: http://httpd.apache.org/docs/2.2/mod/core.html#limitrequestfieldsize\n\n3) Use mod_headers to completely dis-allow the use of Range headers:\n\n RequestHeader unset Range \n\n Note that this may break certain clients - such as those used for\n e-Readers and progressive/http-streaming video. \n\n Furthermore to ignore the Netscape Navigator 2-3 and MSIE 3 specific\n legacy header - add:\n\n RequestHeader unset Request-Range \n\n Unlike the commonly used \u0027Range\u0027 header - dropping the \u0027Request-Range\u0027 \n is not likely to affect many clients. \n\n4) Deploy a Range header count module as a temporary stopgap measure:\n\n http://people.apache.org/~dirkx/mod_rangecnt.c\n\n Precompiled binaries for some platforms are available at:\n\n http://people.apache.org/~dirkx/BINARIES.txt\n\n5) Apply any of the current patches under discussion - such as:\n\n http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e\n http://svn.apache.org/viewvc?view=revision\u0026sortby=date\u0026revision=1161534\n\nOS and Vendor specific information\n==================================\n\nRed Hat: Option 1 cannot be used on Red Hat Enterprise Linux 4. \n https://bugzilla.redhat.com/show_bug.cgi?id=732928\n\nNetWare: Pre compiled binaries available. \n\nmod_security: Has updated their rule set; see\n http://blog.spiderlabs.com/2011/08/mitigation-of-apache-range-header-dos-attack.html\n\n\nActions:\n========\n\nApache HTTPD users who are concerned about a DoS attack against their server \nshould consider implementing any of the above mitigations immediately. \n\nWhen using a third party attack tool to verify vulnerability - note that most \nof the versions in the wild currently check for the presence of mod_deflate; \nand will (mis)report that your server is not vulnerable if this module is not \npresent. This vulnerability is not dependent on presence or absence of \nthat module. \n\nPlanning:\n=========\n\nThis advisory will be updated when new information, a patch or a new release \nis available. A patch or new Apache release for Apache 2.0 and 2.2 is expected \nin the next 24 hours. Note that, while popular, Apache 1.3 is deprecated. \n\n- -- end of advisory - update 2 \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.11 (Darwin)\n\niEYEARECAAYFAk5Xdu8ACgkQ/W+IxiHQpxvN8ACgwsUJ6oYMq3SyoPHCR7rqsbP6\nDFkAoKhZcF87F96h40tQdM1SZsiVX9N5\n=07sc\n-----END PGP SIGNATURE-----\n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n. ----------------------------------------------------------------------\n\nSecunia is hiring!\n\nFind your next job here:\n\nhttp://secunia.com/company/jobs/\n\n----------------------------------------------------------------------\n\nTITLE:\nOracle Fusion Middleware / Application Server ByteRange Filter Denial\nof Service\n\nSECUNIA ADVISORY ID:\nSA46000\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/46000/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=46000\n\nRELEASE DATE:\n2011-09-16\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/46000/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/46000/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=46000\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nOracle has acknowledged a vulnerability in Oracle Fusion Middleware\nand Oracle Application Server, which can be exploited by malicious\npeople to cause a DoS (Denial of Service). \n\nFor more information:\nSA45606\n\nThe vulnerability is reported in the following products:\n* Oracle Fusion Middleware 11g versions 11.1.1.3.0, 11.1.1.4.0, and\n11.1.1.5.0. \n* Oracle Application Server 10g versions 10.1.2.3.0 and 10.1.3.5.0. \n\nSOLUTION:\nApply patches. Please see the vendor\u0027s advisory for details. \n\nORIGINAL ADVISORY:\nhttp://blogs.oracle.com/security/entry/security_alert_for_cve_2011\nhttp://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2011-3192"
},
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "BID",
"id": "49303"
},
{
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"db": "PACKETSTORM",
"id": "104441"
},
{
"db": "PACKETSTORM",
"id": "104804"
},
{
"db": "PACKETSTORM",
"id": "105792"
},
{
"db": "PACKETSTORM",
"id": "104784"
},
{
"db": "PACKETSTORM",
"id": "112043"
},
{
"db": "PACKETSTORM",
"id": "104587"
},
{
"db": "PACKETSTORM",
"id": "106416"
},
{
"db": "PACKETSTORM",
"id": "104479"
},
{
"db": "PACKETSTORM",
"id": "107135"
},
{
"db": "PACKETSTORM",
"id": "113582"
}
],
"trust": 2.88
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=17696",
"trust": 0.2,
"type": "exploit"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2011-3192"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2011-3192",
"trust": 2.3
},
{
"db": "CERT/CC",
"id": "VU#405811",
"trust": 1.8
},
{
"db": "BID",
"id": "49303",
"trust": 1.3
},
{
"db": "SECUNIA",
"id": "46000",
"trust": 1.2
},
{
"db": "SECUNIA",
"id": "46125",
"trust": 1.0
},
{
"db": "SECUNIA",
"id": "45937",
"trust": 1.0
},
{
"db": "SECUNIA",
"id": "45606",
"trust": 1.0
},
{
"db": "SECUNIA",
"id": "46126",
"trust": 1.0
},
{
"db": "SECTRACK",
"id": "1025960",
"trust": 1.0
},
{
"db": "EXPLOIT-DB",
"id": "17696",
"trust": 1.0
},
{
"db": "OSVDB",
"id": "74721",
"trust": 1.0
},
{
"db": "HITACHI",
"id": "HS11-019",
"trust": 0.4
},
{
"db": "HITACHI",
"id": "HS11-021",
"trust": 0.3
},
{
"db": "HITACHI",
"id": "HS11-020",
"trust": 0.3
},
{
"db": "HITACHI",
"id": "HS11-022",
"trust": 0.3
},
{
"db": "JUNIPER",
"id": "JSA10642",
"trust": 0.3
},
{
"db": "SECUNIA",
"id": "45865",
"trust": 0.2
},
{
"db": "VULMON",
"id": "CVE-2011-3192",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "104441",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "104804",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "105792",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "104784",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "112043",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "104587",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "106416",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "104479",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "107135",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "113582",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"db": "BID",
"id": "49303"
},
{
"db": "PACKETSTORM",
"id": "104441"
},
{
"db": "PACKETSTORM",
"id": "104804"
},
{
"db": "PACKETSTORM",
"id": "105792"
},
{
"db": "PACKETSTORM",
"id": "104784"
},
{
"db": "PACKETSTORM",
"id": "112043"
},
{
"db": "PACKETSTORM",
"id": "104587"
},
{
"db": "PACKETSTORM",
"id": "106416"
},
{
"db": "PACKETSTORM",
"id": "104479"
},
{
"db": "PACKETSTORM",
"id": "107135"
},
{
"db": "PACKETSTORM",
"id": "113582"
},
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"id": "VAR-201108-0132",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.3092350391666667
},
"last_update_date": "2024-07-23T19:34:35.377000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Ubuntu Security Notice: apache2 vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-1199-1"
},
{
"title": "Cisco: Apache HTTPd Range Header Denial of Service Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20110830-apache"
},
{
"title": "Debian Security Advisories: DSA-2298-2 apache2 -- denial of service",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=7227b6751a2a5332a53278f1881d559f"
},
{
"title": "Amazon Linux AMI: ALAS-2011-001",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2011-001"
},
{
"title": "Red Hat: Moderate: httpd security and bug fix update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20120542 - security advisory"
},
{
"title": "",
"trust": 0.1,
"url": "https://github.com/live-hack-cve/cve-2011-3192 "
},
{
"title": "MNCanyon",
"trust": 0.1,
"url": "https://github.com/mncanyon/mncanyon "
},
{
"title": "haproxy-ddos",
"trust": 0.1,
"url": "https://github.com/analytically/haproxy-ddos "
},
{
"title": "DDoS-Script",
"trust": 0.1,
"url": "https://github.com/encapsulate/ddos-script "
},
{
"title": "Mind_help",
"trust": 0.1,
"url": "https://github.com/mncanyon/mind_help "
},
{
"title": "DC-p0t",
"trust": 0.1,
"url": "https://github.com/5p1n6a11/dc-p0t "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2011-3192"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-400",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.1,
"url": "http://www.apache.org/dist/httpd/announcement2.2.html"
},
{
"trust": 1.4,
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"trust": 1.3,
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"trust": 1.3,
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"trust": 1.3,
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"trust": 1.3,
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"trust": 1.2,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"trust": 1.2,
"url": "http://seclists.org/fulldisclosure/2011/aug/175"
},
{
"trust": 1.1,
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122d387dd@minotaur.apache.org%3e"
},
{
"trust": 1.1,
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"trust": 1.0,
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"trust": 1.0,
"url": "http://lists.apple.com/archives/security-announce/2011//oct/msg00003.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"trust": 1.0,
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"trust": 1.0,
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122d387dd%40minotaur.apache.org%3e"
},
{
"trust": 1.0,
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3ccaapsnn2po-d-c4nqt_tes2rrwizr7urefhtkpwbc1b+k1dqc7g%40mail.gmail.com%3e"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"trust": 1.0,
"url": "http://osvdb.org/74721"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/45606"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/45937"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/46000"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/46125"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/46126"
},
{
"trust": 1.0,
"url": "http://securitytracker.com/id?1025960"
},
{
"trust": 1.0,
"url": "http://support.apple.com/kb/ht5002"
},
{
"trust": 1.0,
"url": "http://www.cisco.com/en/us/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"trust": 1.0,
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"trust": 1.0,
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"trust": 1.0,
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"trust": 1.0,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2011:130"
},
{
"trust": 1.0,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2013:150"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1245.html"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1294.html"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1300.html"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1329.html"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1330.html"
},
{
"trust": 1.0,
"url": "http://www.redhat.com/support/errata/rhsa-2011-1369.html"
},
{
"trust": 1.0,
"url": "http://www.securityfocus.com/bid/49303"
},
{
"trust": 1.0,
"url": "http://www.ubuntu.com/usn/usn-1199-1"
},
{
"trust": 1.0,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"trust": 1.0,
"url": "https://help.ecostruxureit.com/display/public/uadce725/security+fixes+in+struxureware+data+center+expert+v7.6.0"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3ccvs.httpd.apache.org%3e"
},
{
"trust": 1.0,
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a14762"
},
{
"trust": 1.0,
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a14824"
},
{
"trust": 1.0,
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a18827"
},
{
"trust": 0.9,
"url": "http://blog.spiderlabs.com/2011/08/mitigation-of-apache-range-header-dos-attack.html"
},
{
"trust": 0.8,
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110826103531.998348f82@minotaur.apache.org%3e"
},
{
"trust": 0.8,
"url": "http://www.apache.org/dist/httpd/changes_2.2.20"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3192"
},
{
"trust": 0.3,
"url": "http://kolab.org/pipermail/kolab-announce/2011/000102.html"
},
{
"trust": 0.3,
"url": "http://kolab.org/pipermail/kolab-announce/2011/000103.html"
},
{
"trust": 0.3,
"url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10642\u0026cat=sirt_1\u0026actp=list"
},
{
"trust": 0.3,
"url": "http://httpd.apache.org/download.cgi"
},
{
"trust": 0.3,
"url": "https://supportcenter.checkpoint.com/supportcenter/portal?solutionid=sk65222"
},
{
"trust": 0.3,
"url": "http://www.oracle.com/technetwork/topics/security/alerts-086861.html#securityalerts"
},
{
"trust": 0.3,
"url": "http://blogs.oracle.com/sunsecurity/entry/cve_2011_3192_and_cve"
},
{
"trust": 0.3,
"url": "http://blogs.oracle.com/sunsecurity/entry/cve_2011_3192_denial_of"
},
{
"trust": 0.3,
"url": "http://marc.info/?l=apache-httpd-dev\u0026m=131418828705324\u0026w=2"
},
{
"trust": 0.3,
"url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/./vuls/hs11-020/index.html"
},
{
"trust": 0.3,
"url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/./vuls/hs11-021/index.html"
},
{
"trust": 0.3,
"url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/./vuls/hs11-022/index.html"
},
{
"trust": 0.3,
"url": "http://www.novell.com/support/viewcontent.do?externalid=7009621"
},
{
"trust": 0.3,
"url": "/archive/1/520376"
},
{
"trust": 0.3,
"url": "http://support.avaya.com/css/p8/documents/100148618"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20110830-apache.shtml"
},
{
"trust": 0.3,
"url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03285138"
},
{
"trust": 0.3,
"url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03315912"
},
{
"trust": 0.3,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03517954\u0026ac.admitted=1349807398574.876444892.199480143"
},
{
"trust": 0.3,
"url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/vuls/hs11-019/index.html"
},
{
"trust": 0.3,
"url": "http://www.fujitsu.com/global/support/software/security/products-f/interstage-201102e.html"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21512087"
},
{
"trust": 0.3,
"url": "http://httpd.apache.org/security/cve-2011-3192.txt"
},
{
"trust": 0.3,
"url": "http://rhn.redhat.com/errata/rhsa-2011-1300.html"
},
{
"trust": 0.3,
"url": "http://rhn.redhat.com/errata/rhsa-2011-1329.html"
},
{
"trust": 0.3,
"url": "https://rhn.redhat.com/errata/rhsa-2011-1330.html"
},
{
"trust": 0.3,
"url": "https://www-304.ibm.com/support/docview.wss?uid=nas2aae02620b9b78d9e862578fe003c799b"
},
{
"trust": 0.3,
"url": "http://www.xerox.com/download/security/security-bulletin/1284345-ee19-4bf3860908380/cert_xrx12-004_v1.01.pdf"
},
{
"trust": 0.3,
"url": "http://secunia.com/"
},
{
"trust": 0.3,
"url": "http://lists.grok.org.uk/full-disclosure-charter.html"
},
{
"trust": 0.3,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.2,
"url": "http://people.apache.org/~dirkx/binaries.txt"
},
{
"trust": 0.2,
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3ccaapsnn2po-d-c4nqt_tes2rrwizr7urefhtkpwbc1b+k1dqc7g@mail.gmail.com%3e"
},
{
"trust": 0.2,
"url": "http://people.apache.org/~dirkx/mod_rangecnt.c"
},
{
"trust": 0.2,
"url": "http://httpd.apache.org/docs/2.2/mod/core.html#limitrequestfieldsize"
},
{
"trust": 0.2,
"url": "http://secunia.com/vulnerability_intelligence/"
},
{
"trust": 0.2,
"url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
},
{
"trust": 0.2,
"url": "http://secunia.com/advisories/secunia_security_advisories/"
},
{
"trust": 0.2,
"url": "http://secunia.com/vulnerability_scanning/personal/"
},
{
"trust": 0.2,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.2,
"url": "http://secunia.com/advisories/about_secunia_advisories/"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-1452"
},
{
"trust": 0.2,
"url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.2,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-0419"
},
{
"trust": 0.2,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c02964430"
},
{
"trust": 0.1,
"url": "http://secunia.com/blog/242"
},
{
"trust": 0.1,
"url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=45865"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/45865/"
},
{
"trust": 0.1,
"url": "http://www.hitachi.co.jp/prod/comp/soft1/security/info/./vuls/hs11-019/index.html"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/45865/#comments"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/kb/docs/doc-11259"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/key/#package"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/security/data/cve/cve-2011-3192.html"
},
{
"trust": 0.1,
"url": "https://rhn.redhat.com/errata/rhsa-2011-1369.html"
},
{
"trust": 0.1,
"url": "http://bugzilla.redhat.com/):"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-3192"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/security/"
},
{
"trust": 0.1,
"url": "http://store.mandriva.com/product_info.php?cpath=149\u0026amp;products_id=490"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/security/advisories"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-1623"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-4409"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1468"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1148"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3182"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1467"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1471"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0734"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1470"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-2202"
},
{
"trust": 0.1,
"url": "http://h18000.www1.hp.com/products/servers/management/agents/index.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-4645"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1945"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-2068"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1928"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1938"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-3436"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-2483"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-0014"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1464"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1153"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-0195"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2009-0037"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-2192"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-2791"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3189"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/faq"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/"
},
{
"trust": 0.1,
"url": "https://www.hp.com/go/swa"
},
{
"trust": 0.1,
"url": "https://h20392.www2.hp.com/portal/swdepot/try.do?productnumber=hpuxwsatw319"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-3348"
},
{
"trust": 0.1,
"url": "http://seclists.org/bugtraq/2007/jan/83"
},
{
"trust": 0.1,
"url": "http://trac.tools.ietf.org/wg/httpbis/trac/ticket/311"
},
{
"trust": 0.1,
"url": "http://svn.apache.org/viewvc?view=revision\u0026sortby=date\u0026revision=1161534"
},
{
"trust": 0.1,
"url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=46000"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/46000/"
},
{
"trust": 0.1,
"url": "http://secunia.com/company/jobs/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/46000/#comments"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-2110"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-1473"
},
{
"trust": 0.1,
"url": "http://www.hp.com/swpublishing/mtx-e41b71e6cfbe471dbd029deaab"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0050"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-4108"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-1583"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0884"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-4619"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-0053"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-4576"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2011-2691"
},
{
"trust": 0.1,
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "BID",
"id": "49303"
},
{
"db": "PACKETSTORM",
"id": "104441"
},
{
"db": "PACKETSTORM",
"id": "104804"
},
{
"db": "PACKETSTORM",
"id": "105792"
},
{
"db": "PACKETSTORM",
"id": "104784"
},
{
"db": "PACKETSTORM",
"id": "112043"
},
{
"db": "PACKETSTORM",
"id": "104587"
},
{
"db": "PACKETSTORM",
"id": "106416"
},
{
"db": "PACKETSTORM",
"id": "104479"
},
{
"db": "PACKETSTORM",
"id": "107135"
},
{
"db": "PACKETSTORM",
"id": "113582"
},
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#405811"
},
{
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"db": "BID",
"id": "49303"
},
{
"db": "PACKETSTORM",
"id": "104441"
},
{
"db": "PACKETSTORM",
"id": "104804"
},
{
"db": "PACKETSTORM",
"id": "105792"
},
{
"db": "PACKETSTORM",
"id": "104784"
},
{
"db": "PACKETSTORM",
"id": "112043"
},
{
"db": "PACKETSTORM",
"id": "104587"
},
{
"db": "PACKETSTORM",
"id": "106416"
},
{
"db": "PACKETSTORM",
"id": "104479"
},
{
"db": "PACKETSTORM",
"id": "107135"
},
{
"db": "PACKETSTORM",
"id": "113582"
},
{
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2011-08-26T00:00:00",
"db": "CERT/CC",
"id": "VU#405811"
},
{
"date": "2011-08-29T00:00:00",
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"date": "2011-08-24T00:00:00",
"db": "BID",
"id": "49303"
},
{
"date": "2011-08-25T14:27:56",
"db": "PACKETSTORM",
"id": "104441"
},
{
"date": "2011-09-06T04:48:58",
"db": "PACKETSTORM",
"id": "104804"
},
{
"date": "2011-10-14T05:53:11",
"db": "PACKETSTORM",
"id": "105792"
},
{
"date": "2011-09-04T17:36:46",
"db": "PACKETSTORM",
"id": "104784"
},
{
"date": "2012-04-20T20:15:33",
"db": "PACKETSTORM",
"id": "112043"
},
{
"date": "2011-08-30T14:42:37",
"db": "PACKETSTORM",
"id": "104587"
},
{
"date": "2011-10-29T12:14:00",
"db": "PACKETSTORM",
"id": "106416"
},
{
"date": "2011-08-26T14:40:28",
"db": "PACKETSTORM",
"id": "104479"
},
{
"date": "2011-11-18T07:59:05",
"db": "PACKETSTORM",
"id": "107135"
},
{
"date": "2012-06-12T22:49:22",
"db": "PACKETSTORM",
"id": "113582"
},
{
"date": "2011-08-29T15:55:02.017000",
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2011-09-19T00:00:00",
"db": "CERT/CC",
"id": "VU#405811"
},
{
"date": "2022-09-19T00:00:00",
"db": "VULMON",
"id": "CVE-2011-3192"
},
{
"date": "2015-05-07T17:20:00",
"db": "BID",
"id": "49303"
},
{
"date": "2023-11-07T02:08:27",
"db": "NVD",
"id": "CVE-2011-3192"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "network",
"sources": [
{
"db": "BID",
"id": "49303"
}
],
"trust": 0.3
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Apache HTTPD 1.3/2.x Range header DoS vulnerability",
"sources": [
{
"db": "CERT/CC",
"id": "VU#405811"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Input Validation Error",
"sources": [
{
"db": "BID",
"id": "49303"
}
],
"trust": 0.3
}
}
GHSA-R3PV-69HM-FCJW
Vulnerability from github – Published: 2022-05-13 01:09 – Updated: 2025-04-11 03:50
VLAI?
Details
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
{
"affected": [],
"aliases": [
"CVE-2011-3192"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2011-08-29T15:55:00Z",
"severity": "HIGH"
},
"details": "The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.",
"id": "GHSA-r3pv-69hm-fcjw",
"modified": "2025-04-11T03:50:08Z",
"published": "2022-05-13T01:09:53Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3192"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=732928"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69396"
},
{
"type": "WEB",
"url": "https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0"
},
{
"type": "WEB",
"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=51714"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html"
},
{
"type": "WEB",
"url": "http://blogs.oracle.com/security/entry/security_alert_for_cve_2011"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD@minotaur.apache.org%3e"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g@mail.gmail.com%3e"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=131551295528105\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=131731002122529\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=132033751509019\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=133477473521382\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=133951357207000\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=134987041210674\u0026w=2"
},
{
"type": "WEB",
"url": "http://osvdb.org/74721"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2011/Aug/175"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/45606"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/45937"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/46000"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/46125"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/46126"
},
{
"type": "WEB",
"url": "http://securitytracker.com/id?1025960"
},
{
"type": "WEB",
"url": "http://support.apple.com/kb/HT5002"
},
{
"type": "WEB",
"url": "http://www.apache.org/dist/httpd/Announcement2.2.html"
},
{
"type": "WEB",
"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml"
},
{
"type": "WEB",
"url": "http://www.exploit-db.com/exploits/17696"
},
{
"type": "WEB",
"url": "http://www.gossamer-threads.com/lists/apache/dev/401638"
},
{
"type": "WEB",
"url": "http://www.kb.cert.org/vuls/id/405811"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:130"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1245.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1294.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1300.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1329.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1330.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2011-1369.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/49303"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-1199-1"
}
],
"schema_version": "1.4.0",
"severity": []
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…