VulnerableCode Package Details - pkg:apk/alpine/apache2@2.4.55-r0?arch=x86

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/apache2@2.4.55-r0?arch=x86_64&distroversion=v3.23&reponame=main

purl	pkg:apk/alpine/apache2@2.4.55-r0?arch=x86_64&distroversion=v3.23&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-6qk8-1cj1-4fh7	Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.	CVE-2022-36760
VCID-htfx-mahy-9kde	Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.	CVE-2022-37436

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-08T06:25:03.321743+00:00	Alpine Linux Importer	Fixing	VCID-6qk8-1cj1-4fh7	https://secdb.alpinelinux.org/v3.23/main.json	38.1.0
2026-04-03T17:48:46.218187+00:00	Alpine Linux Importer	Fixing	VCID-htfx-mahy-9kde	https://secdb.alpinelinux.org/v3.23/main.json	38.1.0