CVE-2011-0419
Summary
| CVE | CVE-2011-0419 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2011-05-16 17:55:00 UTC |
| Updated | 2024-04-02 18:46:00 UTC |
| Description | Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via *? sequences in the first argument, as demonstrated by attacks against mod_autoindex in httpd. |
Risk And Classification
Problem Types: CWE-770
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Apache | Http Server | All | All | All | All |
| Application | Apache | Http Server | 0.8.11 | All | All | All |
| Application | Apache | Http Server | 0.8.14 | All | All | All |
| Application | Apache | Http Server | 1.0 | All | All | All |
| Application | Apache | Http Server | 1.0.2 | All | All | All |
| Application | Apache | Http Server | 1.0.3 | All | All | All |
| Application | Apache | Http Server | 1.0.5 | All | All | All |
| Application | Apache | Http Server | 1.1 | All | All | All |
| Application | Apache | Http Server | 1.1.1 | All | All | All |
| Application | Apache | Http Server | 1.2 | All | All | All |
| Application | Apache | Http Server | 1.2.4 | All | All | All |
| Application | Apache | Http Server | 1.2.5 | All | All | All |
| Application | Apache | Http Server | 1.2.6 | All | All | All |
| Application | Apache | Http Server | 1.2.9 | All | All | All |
| Application | Apache | Http Server | 1.3 | All | All | All |
| Application | Apache | Http Server | 1.3.0 | All | All | All |
| Application | Apache | Http Server | 1.3.1 | All | All | All |
| Application | Apache | Http Server | 1.3.1.1 | All | All | All |
| Application | Apache | Http Server | 1.3.10 | All | All | All |
| Application | Apache | Http Server | 1.3.11 | All | All | All |
| Application | Apache | Http Server | 1.3.12 | All | All | All |
| Application | Apache | Http Server | 1.3.13 | All | All | All |
| Application | Apache | Http Server | 1.3.14 | All | All | All |
| Application | Apache | Http Server | 1.3.15 | All | All | All |
| Application | Apache | Http Server | 1.3.16 | All | All | All |
| Application | Apache | Http Server | 1.3.17 | All | All | All |
| Application | Apache | Http Server | 1.3.18 | All | All | All |
| Application | Apache | Http Server | 1.3.19 | All | All | All |
| Application | Apache | Http Server | 1.3.2 | All | All | All |
| Application | Apache | Http Server | 1.3.20 | All | All | All |
| Application | Apache | Http Server | 1.3.22 | All | All | All |
| Application | Apache | Http Server | 1.3.23 | All | All | All |
| Application | Apache | Http Server | 1.3.24 | All | All | All |
| Application | Apache | Http Server | 1.3.25 | All | All | All |
| Application | Apache | Http Server | 1.3.26 | All | All | All |
| Application | Apache | Http Server | 1.3.27 | All | All | All |
| Application | Apache | Http Server | 1.3.28 | All | All | All |
| Application | Apache | Http Server | 1.3.29 | All | All | All |
| Application | Apache | Http Server | 1.3.3 | All | All | All |
| Application | Apache | Http Server | 1.3.30 | All | All | All |
| Application | Apache | Http Server | 1.3.31 | All | All | All |
| Application | Apache | Http Server | 1.3.32 | All | All | All |
| Application | Apache | Http Server | 1.3.33 | All | All | All |
| Application | Apache | Http Server | 1.3.34 | All | All | All |
| Application | Apache | Http Server | 1.3.35 | All | All | All |
| Application | Apache | Http Server | 1.3.36 | All | All | All |
| Application | Apache | Http Server | 1.3.37 | All | All | All |
| Application | Apache | Http Server | 1.3.38 | All | All | All |
| Application | Apache | Http Server | 1.3.39 | All | All | All |
| Application | Apache | Http Server | 1.3.4 | All | All | All |
| Application | Apache | Http Server | 1.3.41 | All | All | All |
| Application | Apache | Http Server | 1.3.42 | All | All | All |
| Application | Apache | Http Server | 1.3.5 | All | All | All |
| Application | Apache | Http Server | 1.3.6 | All | All | All |
| Application | Apache | Http Server | 1.3.65 | All | All | All |
| Application | Apache | Http Server | 1.3.68 | All | All | All |
| Application | Apache | Http Server | 1.3.7 | All | All | All |
| Application | Apache | Http Server | 1.3.8 | All | All | All |
| Application | Apache | Http Server | 1.3.9 | All | All | All |
| Application | Apache | Http Server | 1.4.0 | All | All | All |
| Application | Apache | Http Server | 1.99 | All | All | All |
| Application | Apache | Http Server | 2.0 | All | All | All |
| Application | Apache | Http Server | 2.0.28 | All | All | All |
| Application | Apache | Http Server | 2.0.28 | beta | All | All |
| Application | Apache | Http Server | 2.0.32 | All | All | All |
| Application | Apache | Http Server | 2.0.32 | beta | All | All |
| Application | Apache | Http Server | 2.0.34 | beta | All | All |
| Application | Apache | Http Server | 2.0.35 | All | All | All |
| Application | Apache | Http Server | 2.0.36 | All | All | All |
| Application | Apache | Http Server | 2.0.37 | All | All | All |
| Application | Apache | Http Server | 2.0.38 | All | All | All |
| Application | Apache | Http Server | 2.0.39 | All | All | All |
| Application | Apache | Http Server | 2.0.40 | All | All | All |
| Application | Apache | Http Server | 2.0.41 | All | All | All |
| Application | Apache | Http Server | 2.0.42 | All | All | All |
| Application | Apache | Http Server | 2.0.43 | All | All | All |
| Application | Apache | Http Server | 2.0.44 | All | All | All |
| Application | Apache | Http Server | 2.0.45 | All | All | All |
| Application | Apache | Http Server | 2.0.46 | All | All | All |
| Application | Apache | Http Server | 2.0.47 | All | All | All |
| Application | Apache | Http Server | 2.0.48 | All | All | All |
| Application | Apache | Http Server | 2.0.49 | All | All | All |
| Application | Apache | Http Server | 2.0.50 | All | All | All |
| Application | Apache | Http Server | 2.0.51 | All | All | All |
| Application | Apache | Http Server | 2.0.52 | All | All | All |
| Application | Apache | Http Server | 2.0.53 | All | All | All |
| Application | Apache | Http Server | 2.0.54 | All | All | All |
| Application | Apache | Http Server | 2.0.55 | All | All | All |
| Application | Apache | Http Server | 2.0.56 | All | All | All |
| Application | Apache | Http Server | 2.0.57 | All | All | All |
| Application | Apache | Http Server | 2.0.58 | All | All | All |
| Application | Apache | Http Server | 2.0.59 | All | All | All |
| Application | Apache | Http Server | 2.0.60 | All | All | All |
| Application | Apache | Http Server | 2.0.61 | All | All | All |
| Application | Apache | Http Server | 2.0.63 | All | All | All |
| Application | Apache | Http Server | 2.0.9 | All | All | All |
| Application | Apache | Http Server | 2.1 | All | All | All |
| Application | Apache | Http Server | 2.1.1 | All | All | All |
| Application | Apache | Http Server | 2.1.2 | All | All | All |
| Application | Apache | Http Server | 2.1.3 | All | All | All |
| Application | Apache | Http Server | 2.1.4 | All | All | All |
| Application | Apache | Http Server | 2.1.5 | All | All | All |
| Application | Apache | Http Server | 2.1.6 | All | All | All |
| Application | Apache | Http Server | 2.1.7 | All | All | All |
| Application | Apache | Http Server | 2.1.8 | All | All | All |
| Application | Apache | Http Server | 2.1.9 | All | All | All |
| Application | Apache | Http Server | 2.2 | All | All | All |
| Application | Apache | Http Server | 2.2.0 | All | All | All |
| Application | Apache | Http Server | 2.2.1 | All | All | All |
| Application | Apache | Http Server | 2.2.10 | All | All | All |
| Application | Apache | Http Server | 2.2.11 | All | All | All |
| Application | Apache | Http Server | 2.2.12 | All | All | All |
| Application | Apache | Http Server | 2.2.13 | All | All | All |
| Application | Apache | Http Server | 2.2.14 | All | All | All |
| Application | Apache | Http Server | 2.2.15 | All | All | All |
| Application | Apache | Http Server | 2.2.16 | All | All | All |
| Application | Apache | Http Server | 2.2.2 | All | All | All |
| Application | Apache | Http Server | 2.2.3 | All | All | All |
| Application | Apache | Http Server | 2.2.4 | All | All | All |
| Application | Apache | Http Server | 2.2.6 | All | All | All |
| Application | Apache | Http Server | 2.2.8 | All | All | All |
| Application | Apache | Http Server | 2.2.9 | All | All | All |
| Application | Apache | Http Server | 0.8.11 | All | All | All |
| Application | Apache | Http Server | 0.8.14 | All | All | All |
| Application | Apache | Http Server | 1.0 | All | All | All |
| Application | Apache | Http Server | 1.0.2 | All | All | All |
| Application | Apache | Http Server | 1.0.3 | All | All | All |
| Application | Apache | Http Server | 1.0.5 | All | All | All |
| Application | Apache | Http Server | 1.1 | All | All | All |
| Application | Apache | Http Server | 1.1.1 | All | All | All |
| Application | Apache | Http Server | 1.2 | All | All | All |
| Application | Apache | Http Server | 1.2.4 | All | All | All |
| Application | Apache | Http Server | 1.2.5 | All | All | All |
| Application | Apache | Http Server | 1.2.6 | All | All | All |
| Application | Apache | Http Server | 1.2.9 | All | All | All |
| Application | Apache | Http Server | 1.3 | All | All | All |
| Application | Apache | Http Server | 1.3.0 | All | All | All |
| Application | Apache | Http Server | 1.3.1 | All | All | All |
| Application | Apache | Http Server | 1.3.1.1 | All | All | All |
| Application | Apache | Http Server | 1.3.10 | All | All | All |
| Application | Apache | Http Server | 1.3.11 | All | All | All |
| Application | Apache | Http Server | 1.3.12 | All | All | All |
| Application | Apache | Http Server | 1.3.13 | All | All | All |
| Application | Apache | Http Server | 1.3.14 | All | All | All |
| Application | Apache | Http Server | 1.3.15 | All | All | All |
| Application | Apache | Http Server | 1.3.16 | All | All | All |
| Application | Apache | Http Server | 1.3.17 | All | All | All |
| Application | Apache | Http Server | 1.3.18 | All | All | All |
| Application | Apache | Http Server | 1.3.19 | All | All | All |
| Application | Apache | Http Server | 1.3.2 | All | All | All |
| Application | Apache | Http Server | 1.3.20 | All | All | All |
| Application | Apache | Http Server | 1.3.22 | All | All | All |
| Application | Apache | Http Server | 1.3.23 | All | All | All |
| Application | Apache | Http Server | 1.3.24 | All | All | All |
| Application | Apache | Http Server | 1.3.25 | All | All | All |
| Application | Apache | Http Server | 1.3.26 | All | All | All |
| Application | Apache | Http Server | 1.3.27 | All | All | All |
| Application | Apache | Http Server | 1.3.28 | All | All | All |
| Application | Apache | Http Server | 1.3.29 | All | All | All |
| Application | Apache | Http Server | 1.3.3 | All | All | All |
| Application | Apache | Http Server | 1.3.30 | All | All | All |
| Application | Apache | Http Server | 1.3.31 | All | All | All |
| Application | Apache | Http Server | 1.3.32 | All | All | All |
| Application | Apache | Http Server | 1.3.33 | All | All | All |
| Application | Apache | Http Server | 1.3.34 | All | All | All |
| Application | Apache | Http Server | 1.3.35 | All | All | All |
| Application | Apache | Http Server | 1.3.36 | All | All | All |
| Application | Apache | Http Server | 1.3.37 | All | All | All |
| Application | Apache | Http Server | 1.3.38 | All | All | All |
| Application | Apache | Http Server | 1.3.39 | All | All | All |
| Application | Apache | Http Server | 1.3.4 | All | All | All |
| Application | Apache | Http Server | 1.3.41 | All | All | All |
| Application | Apache | Http Server | 1.3.42 | All | All | All |
| Application | Apache | Http Server | 1.3.5 | All | All | All |
| Application | Apache | Http Server | 1.3.6 | All | All | All |
| Application | Apache | Http Server | 1.3.65 | All | All | All |
| Application | Apache | Http Server | 1.3.68 | All | All | All |
| Application | Apache | Http Server | 1.3.7 | All | All | All |
| Application | Apache | Http Server | 1.3.8 | All | All | All |
| Application | Apache | Http Server | 1.3.9 | All | All | All |
| Application | Apache | Http Server | 1.4.0 | All | All | All |
| Application | Apache | Http Server | 1.99 | All | All | All |
| Application | Apache | Http Server | 2.0 | All | All | All |
| Application | Apache | Http Server | 2.0.28 | All | All | All |
| Application | Apache | Http Server | 2.0.28 | beta | All | All |
| Application | Apache | Http Server | 2.0.32 | All | All | All |
| Application | Apache | Http Server | 2.0.32 | beta | All | All |
| Application | Apache | Http Server | 2.0.34 | beta | All | All |
| Application | Apache | Http Server | 2.0.35 | All | All | All |
| Application | Apache | Http Server | 2.0.36 | All | All | All |
| Application | Apache | Http Server | 2.0.37 | All | All | All |
| Application | Apache | Http Server | 2.0.38 | All | All | All |
| Application | Apache | Http Server | 2.0.39 | All | All | All |
| Application | Apache | Http Server | 2.0.40 | All | All | All |
| Application | Apache | Http Server | 2.0.41 | All | All | All |
| Application | Apache | Http Server | 2.0.42 | All | All | All |
| Application | Apache | Http Server | 2.0.43 | All | All | All |
| Application | Apache | Http Server | 2.0.44 | All | All | All |
| Application | Apache | Http Server | 2.0.45 | All | All | All |
| Application | Apache | Http Server | 2.0.46 | All | All | All |
| Application | Apache | Http Server | 2.0.47 | All | All | All |
| Application | Apache | Http Server | 2.0.48 | All | All | All |
| Application | Apache | Http Server | 2.0.49 | All | All | All |
| Application | Apache | Http Server | 2.0.50 | All | All | All |
| Application | Apache | Http Server | 2.0.51 | All | All | All |
| Application | Apache | Http Server | 2.0.52 | All | All | All |
| Application | Apache | Http Server | 2.0.53 | All | All | All |
| Application | Apache | Http Server | 2.0.54 | All | All | All |
| Application | Apache | Http Server | 2.0.55 | All | All | All |
| Application | Apache | Http Server | 2.0.56 | All | All | All |
| Application | Apache | Http Server | 2.0.57 | All | All | All |
| Application | Apache | Http Server | 2.0.58 | All | All | All |
| Application | Apache | Http Server | 2.0.59 | All | All | All |
| Application | Apache | Http Server | 2.0.60 | All | All | All |
| Application | Apache | Http Server | 2.0.61 | All | All | All |
| Application | Apache | Http Server | 2.0.63 | All | All | All |
| Application | Apache | Http Server | 2.0.9 | All | All | All |
| Application | Apache | Http Server | 2.1 | All | All | All |
| Application | Apache | Http Server | 2.1.1 | All | All | All |
| Application | Apache | Http Server | 2.1.2 | All | All | All |
| Application | Apache | Http Server | 2.1.3 | All | All | All |
| Application | Apache | Http Server | 2.1.4 | All | All | All |
| Application | Apache | Http Server | 2.1.5 | All | All | All |
| Application | Apache | Http Server | 2.1.6 | All | All | All |
| Application | Apache | Http Server | 2.1.7 | All | All | All |
| Application | Apache | Http Server | 2.1.8 | All | All | All |
| Application | Apache | Http Server | 2.1.9 | All | All | All |
| Application | Apache | Http Server | 2.2 | All | All | All |
| Application | Apache | Http Server | 2.2.0 | All | All | All |
| Application | Apache | Http Server | 2.2.1 | All | All | All |
| Application | Apache | Http Server | 2.2.10 | All | All | All |
| Application | Apache | Http Server | 2.2.11 | All | All | All |
| Application | Apache | Http Server | 2.2.12 | All | All | All |
| Application | Apache | Http Server | 2.2.13 | All | All | All |
| Application | Apache | Http Server | 2.2.14 | All | All | All |
| Application | Apache | Http Server | 2.2.15 | All | All | All |
| Application | Apache | Http Server | 2.2.16 | All | All | All |
| Application | Apache | Http Server | 2.2.2 | All | All | All |
| Application | Apache | Http Server | 2.2.3 | All | All | All |
| Application | Apache | Http Server | 2.2.4 | All | All | All |
| Application | Apache | Http Server | 2.2.6 | All | All | All |
| Application | Apache | Http Server | 2.2.8 | All | All | All |
| Application | Apache | Http Server | 2.2.9 | All | All | All |
| Application | Apache | Http Server | All | All | All | All |
| Application | Apache | Http Server | All | All | All | All |
| Application | Apache | Http Server | All | All | All | All |
| Application | Apache | Portable Runtime | All | All | All | All |
| Application | Apache | Portable Runtime | 0.9.1 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.16-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.2 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.2-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.3 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.3-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.4 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.5 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.6 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.7 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.7-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.8 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.9 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.0 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.1 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.10 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.11 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.12 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.13 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.2 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.3 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.4 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.4-dev | All | All | All |
| Application | Apache | Portable Runtime | 1.3.5 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.6 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.6-dev | All | All | All |
| Application | Apache | Portable Runtime | 1.3.7 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.8 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.9 | All | All | All |
| Application | Apache | Portable Runtime | 1.4.0 | All | All | All |
| Application | Apache | Portable Runtime | 1.4.1 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.1 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.16-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.2 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.2-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.3 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.3-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.4 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.5 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.6 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.7 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.7-dev | All | All | All |
| Application | Apache | Portable Runtime | 0.9.8 | All | All | All |
| Application | Apache | Portable Runtime | 0.9.9 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.0 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.1 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.10 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.11 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.12 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.13 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.2 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.3 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.4 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.4-dev | All | All | All |
| Application | Apache | Portable Runtime | 1.3.5 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.6 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.6-dev | All | All | All |
| Application | Apache | Portable Runtime | 1.3.7 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.8 | All | All | All |
| Application | Apache | Portable Runtime | 1.3.9 | All | All | All |
| Application | Apache | Portable Runtime | 1.4.0 | All | All | All |
| Application | Apache | Portable Runtime | 1.4.1 | All | All | All |
| Application | Apache | Portable Runtime | All | All | All | All |
| Application | Apache | Portable Runtime | All | All | All | All |
| Operating System | Apple | Mac Os X | 10.6.0 | All | All | All |
| Operating System | Apple | Mac Os X | 10.6.0 | All | All | All |
| Operating System | Debian | Debian Linux | 5.0 | All | All | All |
| Operating System | Debian | Debian Linux | 6.0 | All | All | All |
| Operating System | Debian | Debian Linux | 7.0 | All | All | All |
| Operating System | Freebsd | Freebsd | All | All | All | All |
| Operating System | Freebsd | Freebsd | All | All | All | All |
| Operating System | Android | All | All | All | All | |
| Operating System | Android | All | All | All | All | |
| Operating System | Netbsd | Netbsd | 5.1 | All | All | All |
| Operating System | Netbsd | Netbsd | 5.1 | All | All | All |
| Operating System | Openbsd | Openbsd | 4.8 | All | All | All |
| Operating System | Openbsd | Openbsd | 4.8 | All | All | All |
| Operating System | Oracle | Solaris | 10 | All | All | All |
| Operating System | Oracle | Solaris | 10 | All | All | All |
| Operating System | Suse | Linux Enterprise Server | 10 | sp3 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Re: Apache Portable Runtime 1.4.4 [...] Released | www.mail-archive.com | ||
| All about me - Maksymilian Arciemowicz - cxib.net | MISC | cxib.net | |
| Apache APR "apr_fnmatch()" Pattern Processing Denial of Service Vulnerability - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| Pony Mail! | lists.apache.org | ||
| Re: fnmatch rewrite in apr, apr 1.4.3 | www.mail-archive.com | ||
| All about me - Maksymilian Arciemowicz - cxib.net | MISC | cxib.net | Patch |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| CVS log for src/lib/libc/gen/fnmatch.c | CONFIRM | www.openbsd.org | |
| Multiple Vendors libc/fnmatch(3) DoS (incl apache poc) - SecurityReason.com | SREASON | securityreason.com | |
| Pony Mail! | lists.apache.org | ||
| [Apache-SVN] Diff of /apr/apr/branches/1.4.x/strings/apr_fnmatch.c | CONFIRM | svn.apache.org | Patch |
| Oracle Critical Patch Update - July 2013 | CONFIRM | www.oracle.com | |
| [Apache-SVN] Revision 1098799 | CONFIRM | svn.apache.org | Patch |
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| [Apache-SVN] Revision 1098188 | CONFIRM | svn.apache.org | Patch |
| Re: fnmatch rewrite in apr, apr 1.4.3 | MLIST | www.mail-archive.com | |
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | lists.apache.org | ||
| Red Hat Customer Portal | REDHAT | www.redhat.com | |
| Apache HTTP Server APR "apr_fnmatch()" Denial of Service Vulnerability - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Re: Apache Portable Runtime 1.4.4 [...] Released | MLIST | www.mail-archive.com | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | lists.apache.org | ||
| Apache HTTP Server Project | CONFIRM | www.apache.org | Patch |
| Re: Apache Portable Runtime 1.4.4 [...] Released | MLIST | www.mail-archive.com | |
| Pony Mail! | MLIST | lists.apache.org | |
| [security-announce] SUSE-SU-2011:1229-1: important: Security update for | SUSE | lists.opensuse.org | |
| '[security bulletin] HPSBMU02704 SSRT100619 rev.1 - HP OpenView Network Node Manager (OV NNM) Running' - MARC | HP | marc.info | |
| Pony Mail! | lists.apache.org | ||
| Support | REDHAT | www.redhat.com | |
| Pony Mail! | lists.apache.org | ||
| '[security bulletin] HPSBUX02702 SSRT100606 rev.1 - HP-UX Apache Web Server, Remote Denial of Service' - MARC | HP | marc.info | |
| Bug 703390 – CVE-2011-0419 apr: unconstrained recursion in apr_fnmatch | CONFIRM | bugzilla.redhat.com | Patch |
| Pony Mail! | lists.apache.org | ||
| '[security bulletin] HPSBUX02707 SSRT100626 rev.1 - HP-UX Apache Web Server, Remote Denial of Service' - MARC | HP | marc.info | |
| Red Hat Customer Portal | REDHAT | www.redhat.com | |
| Multiple Vendors libc/fnmatch(3) DoS (incl apache) ( Research Advisory ) - SecurityReason.com | SREASONRES | securityreason.com | |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| Debian -- Security Information -- DSA-2237-1 apr | DEBIAN | www.debian.org | |
| APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006 | APPLE | lists.apple.com | |
| httpd 2.2 vulnerabilities - The Apache HTTP Server Project | CONFIRM | httpd.apache.org | Vendor Advisory |
| Support / Security / Advisories / / MDVSA-2013:150 | Mandriva | MANDRIVA | www.mandriva.com | |
| Apache APR Library apr_fnmatch() Flaw Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | securitytracker.com | |
| Pony Mail! | lists.apache.org | ||
| About Secunia Research | Flexera | SECUNIA | secunia.com | |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| '[security bulletin] HPSBOV02822 SSRT100966 rev.1 - HP Secure Web Server (SWS) for OpenVMS, Remote De' - MARC | HP | marc.info | |
| Apache Portable Runtime library 1.5.2 Released | CONFIRM | www.apache.org | Patch |
| About the security content of OS X Lion v10.7.2 and Security Update 2011-006 | CONFIRM | support.apple.com | |
| Pony Mail! | lists.apache.org | ||
| Re: Apache Portable Runtime 1.4.4 [...] Released | www.mail-archive.com | ||
| Pony Mail! | MLIST | lists.apache.org | |
| 404 Not Found | CONFIRM | www.apache.org | |
| Pony Mail! | lists.apache.org | ||
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MLIST | lists.apache.org | |
| Support / Security / Advisories / / MDVSA-2011:084 | Mandriva | MANDRIVA | www.mandriva.com | |
| CVS log for src/lib/libc/gen/fnmatch.c | CONFIRM | cvsweb.netbsd.org | |
| Oracle Critical Patch Update - July 2012 | CONFIRM | www.oracle.com | |
| Pony Mail! | lists.apache.org | ||
| Red Hat update for apr - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| Pony Mail! | MLIST | lists.apache.org | |
| Pony Mail! | MITRE | lists.apache.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.