Homepage

httpd-core vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the httpd-core package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.57-11.el9_4.3
  • M
Improper Access Control

<0:2.4.57-11.el9_4.3
  • M
Improper Output Neutralization for Logs

<0:2.4.57-11.el9_4.3
  • M
Improper Authentication

<0:2.4.57-11.el9_4.3
  • M
Improper Access Control

<0:2.4.57-11.el9_4.3
  • M
Improper Output Neutralization for Logs

<0:2.4.57-11.el9_4.3
  • M
Improper Authentication

<0:2.4.57-11.el9_4.3
  • M
Improper Access Control

<0:2.4.57-11.el9_4.3
  • M
Improper Output Neutralization for Logs

<0:2.4.57-11.el9_4.3
  • M
Improper Authentication

<0:2.4.53-11.el9_2.13
  • M
Improper Access Control

<0:2.4.53-11.el9_2.13
  • M
Improper Output Neutralization for Logs

<0:2.4.53-11.el9_2.13
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Improper Output Neutralization for Logs

<0:2.4.62-4.el9_6.4
  • M
Improper Authentication

<0:2.4.62-4.el9_6.4
  • M
Improper Access Control

<0:2.4.62-4.el9_6.4
  • M
Improper Input Validation

*
  • M
Memory Leak

*
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.53-11.el9_2.11
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.53-11.el9_2.11
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.53-11.el9_2.11
  • M
Improper Input Validation

<0:2.4.53-11.el9_2.10
  • M
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.10
  • M
Improper Input Validation

<0:2.4.53-11.el9_2.10
  • M
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.10
  • M
Improper Input Validation

<0:2.4.53-11.el9_2.10
  • M
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.10
  • H
NULL Pointer Dereference

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • H
NULL Pointer Dereference

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • H
NULL Pointer Dereference

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • H
Improper Encoding or Escaping of Output

<0:2.4.53-11.el9_2.8
  • M
HTTP Response Splitting

<0:2.4.53-11.el9_2.6
  • M
HTTP Response Splitting

<0:2.4.53-11.el9_2.6
  • M
HTTP Response Splitting

<0:2.4.53-11.el9_2.6
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:2.4.57-11.el9_4.1
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
NULL Pointer Dereference

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • H
Improper Input Validation

<0:2.4.57-11.el9_4
  • H
Improper Encoding or Escaping of Output

<0:2.4.57-11.el9_4
  • M
HTTP Response Splitting

<0:2.4.62-1.el9
  • M
Improper Input Validation

<0:2.4.62-1.el9
  • M
Out-of-bounds Read

<0:2.4.57-8.el9
  • M
HTTP Response Splitting

<0:2.4.57-5.el9
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • H
HTTP Response Splitting

<0:2.4.53-7.el9_1.5
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Response Splitting

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Out-of-bounds Read

<0:2.4.53-7.el9_1.1
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Insufficient Verification of Data Authenticity

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Information Exposure

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Allocation of Resources Without Limits or Throttling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
HTTP Request Smuggling

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Improper Initialization

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9
  • M
Integer Overflow or Wraparound

<0:2.4.53-7.el9