Search for packages
| purl | pkg:rpm/redhat/httpd@2.2.15-9.el6_1?arch=3 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 9.6 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-6vze-zk58-7yep
Aliases: CVE-2011-3348 |
A flaw was found when mod_proxy_ajp is used together with mod_proxy_balancer. Given a specific configuration, a remote attacker could send certain malformed HTTP requests, putting a backend server into an error state until the retry timeout expired. This could lead to a temporary denial of service. | There are no reported fixed by versions. |
|
VCID-prd8-51a5-pygj
Aliases: CVE-2011-3368 |
An exposure was found when using mod_proxy in reverse proxy mode. In certain configurations using RewriteRule with proxy flag or ProxyPassMatch, a remote attacker could cause the reverse proxy to connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to attacker. No update of 1.3 will be released. Patches will be published to https://archive.apache.org/dist/httpd/patches/apply_to_1.3.42/ | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:56:20.856594+00:00 | RedHat Importer | Affected by | VCID-6vze-zk58-7yep | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3348.json | 38.0.0 |
| 2026-04-01T14:56:18.906164+00:00 | RedHat Importer | Affected by | VCID-prd8-51a5-pygj | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3368.json | 38.0.0 |