VYPR

rpm package

opensuse/apache2-mod_jk&distro=openSUSE Leap 15.4

pkg:rpm/opensuse/apache2-mod_jk&distro=openSUSE%20Leap%2015.4

Vulnerabilities (1)

  • CVE-2018-11759Oct 31, 2018
    affected < 1.2.49-150100.6.6.1fixed 1.2.49-150100.6.6.1

    The Apache Web Server (httpd) specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1.2.0 to 1.2.44 did not handle some edge cases correctly. If only a sub-set of the URLs supported by Tomcat were exposed