Ibb-apache


reports in last 90 days

11

disclosed resolved issues

0

disclosed informative issues

0

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

Medium CVE-2019-0196: mod_http2 with scoreboard Use-After-Free (Read)

Use After Free cy1337 Time to triage: 3 Days and 17 hours


Time to close: 155 Days and 11 hours
Resolved

High Apache HTTP [2.4.17-2.4.38] Local Root Privilege Escalation

Privilege Escalation real Time to triage: 1 Days and 22 hours


Time to close: 159 Days and 6 hours
Resolved

Medium DoS for HTTP/2 connections by crafted requests (CVE-2018-1333)

Denial of Service 97ffb8d5 Issue was not triaged


Time to close: 75 Days and 4 hours
Resolved

Medium mod_userdir CRLF injection (CVE-2016-4975)

CRLF Injection bobrov Issue was not triaged


Time to close: 18 Days and 0 hours
Resolved

Low Optionsbleed / CVE-2017-9798

Use After Free hanno Time to triage: 0 Days and 2 hours


Time to close: 83 Days and 9 hours
Resolved

Medium ap_find_token() Buffer Overread

Buffer Over-read javier_sensepost Issue was not triaged


Time to close: 21 Days and 4 hours
Resolved

Medium Apache HTTP Request Parsing Whitespace Defects

HTTP Request Smuggling regilero Issue was not triaged


Time to close: 11 Days and 19 hours
Resolved

Low DoS vulnerability in mod_auth_digest CVE-2016-2161

Denial of Service danse Issue was not triaged


Time to close: 15 Days and 3 hours
Resolved

No rating mod_lua: Crash in websockets PING handling

None supplied guido Issue was not triaged


Time to close: 7 Days and 0 hours
Resolved

No rating mod_proxy_fcgi buffer overflow

None supplied talko Issue was not triaged


Time to close: 61 Days and 3 hours
Resolved

No rating moderate: mod_deflate denial of service

None supplied gianko Issue was not triaged


Time to close: 151 Days and 20 hours
Resolved