Lucene search
F5F5:K12254802HistoryJun 07, 2016 - 12:00 a.m.
K12254802 : Apache httpd HTTP/2 vulnerability CVE-2016-1546
2016-06-0700:00:00
my.f5.com
28
Security Advisory Description
The Apache HTTP Server 2.4.17 and 2.4.18, when mod_http2 is enabled, does not limit the number of simultaneous stream workers for a single HTTP/2 connection, which allows remote attackers to cause a denial of service (stream-processing outage) via modified flow-control windows. (CVE-2016-1546)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
ubuntucve
ubuntucve
CVE-2016-1546
2016-07-06 00:00:00
cvelist
cvelist
CVE-2016-1546
2016-07-06 14:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:10:15
httpd
httpd
Apache Httpd < 2.4.20 : mod_http2: denial of service by thread starvation
2016-02-02 00:00:00
prion
prion
Buffer overflow
2016-07-06 14:59:00
nessus
nessus
Photon OS 1.0: Httpd PHSA-2017-0013
2019-02-07 00:00:00
Apache 2.4.17 / 2.4.18 DoS
2019-02-08 00:00:00
Apache HTTP Server 2.4.x < 2.4.23 Multiple Vulnerabilities
2016-07-15 00:00:00
openvas
openvas
Apache HTTP Server Denial of Service Vulnerability (Jul 2016)
2016-07-08 00:00:00
nvd
nvd
CVE-2016-1546
2016-07-06 14:59:01
f5
f5
SOL12254802 - Apache httpd HTTP/2 vulnerability CVE-2016-1546
2016-06-07 00:00:00
debiancve
debiancve
CVE-2016-1546
2016-07-06 14:59:01
cve
cve
CVE-2016-1546
2016-07-06 14:59:01
gentoo
gentoo
Apache: Multiple vulnerabilities
2016-10-06 00:00:00
thn
thn
4 Flaws hit HTTP/2 Protocol that could allow Hackers to Disrupt Servers
2016-08-03 20:10:00
redhat
redhat
ibm
ibm
photon
photon
oracle
oracle
Oracle Critical Patch Update - October 2016
2016-10-18 00:00:00