VYPR

APR

by Apache

Source repositories

CVEs (4)

  • CVE-2009-2699HigOct 13, 2009
    risk 0.43cvss 7.5epss 0.14

    The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable Runtime (APR) library before 1.3.9, as used in the Apache HTTP Server before 2.2.14 and other products, does not properly handle errors, which allows remote attackers to cause a…

  • CVE-2011-1928May 24, 2011
    risk 0.01cvss epss 0.10

    The fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library 1.4.3 and 1.4.4, and the Apache HTTP Server 2.2.18, allows remote attackers to cause a denial of service (infinite loop) via a URI that does not match unspecified types of wildcard patterns,…

  • CVE-2009-2412Aug 6, 2009
    risk 0.01cvss epss 0.14

    Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger…

  • CVE-2023-49582Aug 26, 2024
    risk 0.00cvss epss 0.00

    Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named shared memory segments, potentially revealing sensitive application data. This issue does not affect non-Unix platforms, or builds…