CVE-2024-23837
7.5HIGHLibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
Опубликовано: 2/26/2024Обновлено: 11/3/2025
Описание
LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.
ИИ-АнализНа базе ИИ
Затронутые продукты
oisflibhtp
fedoraprojectfedora
38
fedoraprojectfedora
39
Ссылки
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit
- https://github.com/OISF/libhtp/commit/20ac301d801cdf01b3f021cca08a22a87f477c4aPatch
- https://github.com/OISF/libhtp/security/advisories/GHSA-f9wf-rrjj-qx8mVendor Advisory
- https://lists.debian.org/debian-lts-announce/2025/09/msg00009.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GOCOBFUTIFHOP2PZOH4ENRFXRBHIRKK4/Mailing List
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXJIT7R53ZXROO3I256RFUWTIW4ECK6P/Mailing List
- https://redmine.openinfosecfoundation.org/issues/6444Exploit