VYPR

rpm package

suse/apache2-mod_jk&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6

pkg:rpm/suse/apache2-mod_jk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6

Vulnerabilities (2)

  • CVE-2024-46544Sep 23, 2024
    affected < 1.2.50-150100.6.12.1fixed 1.2.50-150100.6.12.1

    Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing mod_jk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-

  • CVE-2023-41081Sep 13, 2023
    affected < 1.2.50-150100.6.12.1fixed 1.2.50-150100.6.12.1

    Important: Authentication Bypass CVE-2023-41081 The mod_jk component of Apache Tomcat Connectors in some circumstances, such as when a configuration included "JkOptions +ForwardDirectories" but the configuration did not provide explicit mounts for all possible proxied requ