Apache fixes an HTTP Server flaw.
212 Apache fixes a critical HTTP Server flaw. Apache Security Advisory October 19, 2023. Multiple vulnerabilities have been discovered in Apache HTTP Server. They allow an attacker to remotely cause a denial of service and breach data confidentiality. CVE-2023-43622: Apache HTTP Server: DoS in HTTP/2 with initial windows of zero size (cve.mitre.org). An attacker, opening an HTTP/2 connection with an initial window of size 0, was able to block the management of this connection indefinitely in Apache HTTP Server. This could be used to exhaust server resources. Already in October 2021, Apache fixed a critical Zero Day vulnerability on its HTTP server open source project. She corrected […]
Apache fixes an HTTP Server flaw. Read more "
Apache, CERT, corrective, DDoS, Fault, News, Network, Server