| Errata ID | 242 |
|---|---|
| Date | 2019-08-28 |
| Source package | apache2 |
| Fixed in version | 2.4.25-3+deb9u8A~4.4.1.201908270838 |
| Description | This update addresses the following issues: * request for large response leads to denial of service (CVE-2019-9517) * memory corruption on early pushes (CVE-2019-10081) * read-after-free in h2 connection shutdown (CVE-2019-10082) * limited cross-site scripting in mod_proxy error page (CVE-2019-10092) * mod_rewrite potential open redirect (CVE-2019-10098) |
| Additional notes | |
| CVE ID | CVE-2019-9517 CVE-2019-10081 CVE-2019-10082 CVE-2019-10092 CVE-2019-10098 |
| UCS Bug number | #50060 |
