apache2 vulnerabilities

Known vulnerabilities in the apache2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M Improper Encoding or Escaping of Output	<2.4.29-1ubuntu4.27+esm3
M NULL Pointer Dereference	<2.4.29-1ubuntu4.27+esm3
M CVE-2024-38476	<2.4.29-1ubuntu4.27+esm3
M Improper Encoding or Escaping of Output	<2.4.29-1ubuntu4.27+esm3
M CVE-2023-38709	<2.4.29-1ubuntu4.27+esm2
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.27+esm2
M CVE-2024-24795	<2.4.29-1ubuntu4.27+esm2
L Out-of-bounds Read	<2.4.29-1ubuntu4.27+esm1
M HTTP Request Smuggling	<2.4.29-1ubuntu4.27
M Out-of-bounds Write	<2.4.29-1ubuntu4.26
M HTTP Response Splitting	<2.4.29-1ubuntu4.26
M HTTP Request Smuggling	<2.4.29-1ubuntu4.26
M HTTP Request Smuggling	<2.4.29-1ubuntu4.24
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.24
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.25
M Insufficient Verification of Data Authenticity	<2.4.29-1ubuntu4.24
M CVE-2022-30556	<2.4.29-1ubuntu4.24
M Integer Overflow or Wraparound	<2.4.29-1ubuntu4.24
L Integer Overflow or Wraparound	<2.4.29-1ubuntu4.24
M Improper Initialization	<2.4.29-1ubuntu4.22
L Integer Overflow or Wraparound	<2.4.29-1ubuntu4.22
M HTTP Request Smuggling	<2.4.29-1ubuntu4.22
M Out-of-bounds Write	<2.4.29-1ubuntu4.22
M NULL Pointer Dereference	<2.4.29-1ubuntu4.21
M Out-of-bounds Write	<2.4.29-1ubuntu4.21
M Server-Side Request Forgery (SSRF)	<2.4.29-1ubuntu4.18
M Buffer Overflow	<2.4.29-1ubuntu4.17
M NULL Pointer Dereference	<2.4.29-1ubuntu4.17
M CVE-2021-33193	<2.4.29-1ubuntu4.17
M HTTP Request Smuggling	*
M NULL Pointer Dereference	<2.4.29-1ubuntu4.16
M Out-of-bounds Write	<2.4.29-1ubuntu4.16
M CVE-2021-30641	<2.4.29-1ubuntu4.16
L Out-of-bounds Write	<2.4.29-1ubuntu4.16
M HTTP Request Smuggling	<2.4.29-1ubuntu4.14
M HTTP Request Smuggling	<2.4.29-1ubuntu4.14
L Open Redirect	<2.4.29-1ubuntu4.14
L Use of Uninitialized Resource	<2.4.29-1ubuntu4.14
L Open Redirect	<2.4.29-1ubuntu4.10
L Use After Free	<2.4.29-1ubuntu4.10
M Out-of-bounds Write	<2.4.29-1ubuntu4.10
L Cross-site Scripting (XSS)	<2.4.29-1ubuntu4.10
M Allocation of Resources Without Limits or Throttling	<2.4.29-1ubuntu4.10
H Use After Free	<2.4.29-1ubuntu4.6
L HTTP Request Smuggling	<2.4.29-1ubuntu4.10
L Use After Free	<2.4.29-1ubuntu4.6
M Race Condition	<2.4.29-1ubuntu4.6
L Use of Incorrectly-Resolved Name or Reference	<2.4.29-1ubuntu4.6
L Session Fixation	<2.4.29-1ubuntu4.6
L Resource Exhaustion	<2.4.29-1ubuntu4.6
M CVE-2018-11763	<2.4.29-1ubuntu4.4
L Resource Exhaustion	<2.4.29-1ubuntu4.4
L Improper Input Validation	<2.4.29-1ubuntu4.1
L CVE-2018-1283	<2.4.29-1ubuntu4.1
L Improper Authentication	<2.4.29-1ubuntu4.1
L Out-of-bounds Write	<2.4.29-1ubuntu4.1
L NULL Pointer Dereference	<2.4.29-1ubuntu4.4
L Out-of-bounds Read	<2.4.29-1ubuntu4.1
L Out-of-Bounds	<2.4.29-1ubuntu4.1

Vulnerability

Vulnerable Version

Improper Encoding or Escaping of Output

<2.4.29-1ubuntu4.27+esm3

NULL Pointer Dereference

<2.4.29-1ubuntu4.27+esm3

CVE-2024-38476

<2.4.29-1ubuntu4.27+esm3

Improper Encoding or Escaping of Output

<2.4.29-1ubuntu4.27+esm3

CVE-2023-38709

<2.4.29-1ubuntu4.27+esm2