all InfoSec news
USN-5834-1: Apache HTTP Server vulnerabilities
Jan. 31, 2023, 1:13 p.m. |
Ubuntu security notices ubuntu.com
properly handle specially crafted request headers. A remote attacker
could possibly use this issue to cause the process to crash, leading
to a denial of service. (CVE-2006-20001)
It was discovered that the Apache HTTP Server mod_proxy_ajp module did not
properly handle certain invalid Transfer-Encoding headers. A remote attacker
could possibly use this issue to perform an HTTP Request Smuggling attack.
(CVE-2022-36760)
apache attack crash cve denial of service encoding headers http http request smuggling issue process request request smuggling server service smuggling usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6726-2: Linux kernel (IoT) vulnerabilities
1 day, 14 hours ago |
ubuntu.com
USN-6725-2: Linux kernel (AWS) vulnerabilities
1 day, 15 hours ago |
ubuntu.com
USN-6724-2: Linux kernel vulnerabilities
1 day, 16 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Cybersecurity Engineer
@ Alstom | Charleroi, BE
Member of Compliance, Information Technology
@ Anchorage Digital | United States
Information Security Consultant (GRC) - Cumulus Systems
@ Hitachi | (HIL) DELHI - RHQ
Security Engineer
@ EarnIn | Mexico