Search CVE reports
1 – 3 of 3 results
Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure and possible RCE
2 affected packages
uwsgi, apache2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| uwsgi | — | Not affected | Not affected | Fixed |
| apache2 | — | Fixed | Fixed | Not affected |
Some fixes available 3 of 4
uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.
1 affected package
uwsgi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| uwsgi | — | — | — | Fixed |
Some fixes available 2 of 3
The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.
1 affected package
uwsgi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| uwsgi | — | — | — | Not affected |