[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Apache HTTP server - (bulletinapr2019)

ID: oval:org.secpod.oval:def:2104510Date: (C)2019-12-31   (M)2024-01-29
Class: PATCHFamily: unix




In Apache HTTP Server 2.4 releases 2.4.37 and 2.4.38, a bug in mod_ssl when using per-location client certificate verification with TLSv1.3 allowed a client to bypass configured access control restrictions.

Platform:
Sun Solaris 11
Product:
web/server/apache-24
web/server/apache-24/module/apache-ssl
web/server/apache-24/module/apache-ssl-fips-140
web/server/apache-24/module/apache-lua
web/server/apache-24/module/apache-ldap
web/server/apache-24/module/apache-gss
web/server/apache-24/module/apache-dbd
Reference:
bulletinapr2019
CVE-2019-0215
CVE-2019-0196
CVE-2019-0197
CVE-2019-0211
CVE-2019-0217
CVE-2019-0220
CVE    6
CVE-2019-0197
CVE-2019-0196
CVE-2019-0220
CVE-2019-0215
...
CPE    1
cpe:/o:oracle:solaris:11

© SecPod Technologies