CVE-2024-23837
7.5HIGHLibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
Published: 2/26/2024Updated: 11/3/2025
Description
LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
AI AnalysisPowered by AI
Affected Products
oisflibhtp
fedoraprojectfedora
38
fedoraprojectfedora
39
References
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.debian.org/debian-lts-announce/2025/09/msg00009.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit