CVE-2024-23837
7.5HIGHLibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
Publicado: 2/26/2024Actualizado: 11/3/2025
Descripción
LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
Análisis IAImpulsado por IA
Productos Afectados
oisflibhtp
fedoraprojectfedora
38
fedoraprojectfedora
39
Referencias
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.debian.org/debian-lts-announce/2025/09/msg00009.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit