VulnerableCode Package Details - pkg:deb/debian/apache2@2.2.22-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-53da-z9gn-n7f2	A flaw was found in mod_log_config. If the '%{cookiename}C' log format string is in use, a remote attacker could send a specific cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.	CVE-2012-0021
VCID-d4rc-pnv5-6uc8	A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose "httpOnly" cookies when no custom ErrorDocument is specified.	CVE-2012-0053
VCID-n9e1-c2zs-zkdk	A flaw was found when mod_proxy_ajp connects to a backend server that takes too long to respond. Given a specific configuration, a remote attacker could send certain requests, putting a backend server into an error state until the retry timeout expired. This could lead to a temporary denial of service.	CVE-2012-4557
VCID-ym93-sxb8-fkdm	A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.	CVE-2012-0031

Vulnerability

Summary

Aliases

VCID-53da-z9gn-n7f2

A flaw was found in mod_log_config. If the '%{cookiename}C' log format string is in use, a remote attacker could send a specific cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.

CVE-2012-0021

VCID-d4rc-pnv5-6uc8

A flaw was found in the default error response for status code 400. This flaw could be used by an attacker to expose "httpOnly" cookies when no custom ErrorDocument is specified.

CVE-2012-0053

VCID-n9e1-c2zs-zkdk

A flaw was found when mod_proxy_ajp connects to a backend server that takes too long to respond. Given a specific configuration, a remote attacker could send certain requests, putting a backend server into an error state until the retry timeout expired. This could lead to a temporary denial of service.

CVE-2012-4557

VCID-ym93-sxb8-fkdm

A flaw was found in the handling of the scoreboard. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.

CVE-2012-0031

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-13T08:56:58.831665+00:00	Debian Importer	Fixing	VCID-ym93-sxb8-fkdm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:07:41.012265+00:00	Debian Importer	Fixing	VCID-n9e1-c2zs-zkdk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:26:12.522834+00:00	Debian Importer	Fixing	VCID-d4rc-pnv5-6uc8	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:50:42.472312+00:00	Debian Importer	Fixing	VCID-53da-z9gn-n7f2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:17:01.342990+00:00	Debian Importer	Fixing	VCID-ym93-sxb8-fkdm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:04.650824+00:00	Debian Importer	Fixing	VCID-n9e1-c2zs-zkdk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:58.349493+00:00	Debian Importer	Fixing	VCID-d4rc-pnv5-6uc8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:07:13.511282+00:00	Debian Importer	Fixing	VCID-53da-z9gn-n7f2	https://security-tracker.debian.org/tracker/data/json	38.1.0