Homepage

mod_http2 vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the mod_http2 package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
NULL Pointer Dereference

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
Improper Encoding or Escaping of Output

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
Improper Input Validation

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
Improper Encoding or Escaping of Output

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
Improper Encoding or Escaping of Output

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • L
NULL Pointer Dereference

*
  • L
HTTP Response Splitting

*
  • M
Improper Input Validation

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • H
Resource Exhaustion

<0:1.15.7-8.module+el8.9.0+21652+2dd1200b.5
  • M
Out-of-bounds Read

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • M
Resource Exhaustion

<0:1.15.7-10.module+el8.10.0+21653+eaff63f0
  • M
HTTP Response Splitting

<0:1.15.7-8.module+el8.8.0+18751+b4557bca.3
  • H
HTTP Response Splitting

<0:1.15.7-5.module+el8.7.0+18499+2e106f0b.4
  • M
HTTP Response Splitting

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
HTTP Request Smuggling

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Out-of-bounds Read

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Insufficient Verification of Data Authenticity

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Allocation of Resources Without Limits or Throttling

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Information Exposure

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Allocation of Resources Without Limits or Throttling

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Integer Overflow or Wraparound

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Integer Overflow or Wraparound

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
HTTP Request Smuggling

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Integer Overflow or Wraparound

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Improper Initialization

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • H
HTTP Request Smuggling

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Integer Overflow or Wraparound

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • H
Resource Exhaustion

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
NULL Pointer Dereference

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • H
Out-of-bounds Write

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • L
NULL Pointer Dereference

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • H
Server-Side Request Forgery (SSRF)

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Out-of-bounds Write

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Out-of-bounds Read

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
NULL Pointer Dereference

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
NULL Pointer Dereference

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Resource Exhaustion

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Out-of-Bounds

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Insufficient Session Expiration

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Open Redirect

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Resource Exhaustion

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
HTTP Request Smuggling

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Use After Free

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Use After Free

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Buffer Overflow

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Resource Exhaustion

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • H
Resource Exhaustion

<0:1.11.3-3.module+el8.2.0+7758+84b4ca3e.1
  • M
Missing Initialization of a Variable

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Open Redirect

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • M
Improper Access Control

<0:1.11.3-3.module+el8.1.0+4134+e6bad0ed
  • M
Path Equivalence

<0:1.11.3-3.module+el8.1.0+4134+e6bad0ed
  • H
Resource Exhaustion

<0:1.11.3-3.module+el8.0.0+4096+eb40e6da
  • M
Cross-site Scripting (XSS)

<0:1.15.7-2.module+el8.3.0+7670+8bf57d29
  • H
Improper Access Control

<0:1.11.3-2.module+el8.0.0+2969+90015743
  • H
Execution with Unnecessary Privileges

<0:1.11.3-2.module+el8.0.0+2969+90015743
  • M
Improper Input Validation

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • H
Out-of-Bounds

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
NULL Pointer Dereference

<0:1.15.7-3.module+el8.4.0+8625+d397f3da
  • M
Out-of-Bounds

<0:1.15.7-5.module+el8.6.0+13996+01710940
  • M
Improper Authentication

*
  • L
Out-of-Bounds

*