VulnerableCode Package Details - pkg:alpm/archlinux/apache@2.4.33-3

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/apache@2.4.33-3

Essentials
History (2)

purl	pkg:alpm/archlinux/apache@2.4.33-3

Next non-vulnerable version	2.4.34-1
Latest non-vulnerable version	2.4.55-1
Risk	10.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-9vzm-qtye-ufh2 Aliases: CVE-2018-1333	By specially crafting HTTP/2 requests, workers would be allocated 60 seconds longer than necessary, leading to worker exhaustion and a denial of service. This issue only affects servers that have configured and enabled HTTP/2 support, which is not the default	2.4.34-1 Affected by 0 other vulnerabilities.
VCID-qc9j-x576-ayc1 Aliases: CVE-2018-8011	By specially crafting HTTP requests, the mod_md challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server.	2.4.34-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:27:04.461516+00:00	Arch Linux Importer	Affected by	VCID-9vzm-qtye-ufh2	https://security.archlinux.org/AVG-736	38.0.0
2026-04-01T18:27:04.432079+00:00	Arch Linux Importer	Affected by	VCID-qc9j-x576-ayc1	https://security.archlinux.org/AVG-736	38.0.0