Packages
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Packages
Maintainers
USE flags
Architectures
About
www-servers
The www-servers category contains web server packages.
Packages
Stabilization
2
Outdated
4
Pull requests
4
Bugs
113
Security
12
Security Bug Reports
<www-servers/caddy-2.5.2: oob read allows for DoS
860147 - Assigned to Gentoo Security
<www-servers/varnish-7.1.2: multiple vulnerabilities
880627 - Assigned to Gentoo Security
<www-servers/h2o-2.2.6-r2: HTTP/2 Rapid Reset vulnerabilitiy
915567 - Assigned to Gentoo Security
<www-servers/tomcat-{8.5.94,9.0.81,10.1.14}: Multiple vulnerabilities
915568 - Assigned to Gentoo Security
<www-servers/apache-2.4.58: multiple vulnerabilities
915996 - Assigned to Gentoo Security
<www-servers/tomcat-{8.5.93:8.5,9.0.79:9,10.1.13:10}: open redirect
917466 - Assigned to Gentoo Security
<www-servers/caddy-2.7.5: http/2 rapid reset vulnerability
918413 - Assigned to Gentoo Security
<www-servers/varnish-4.5.0: http/2 rapid reset vulnerability
918416 - Assigned to Gentoo Security
<www-servers/tomcat-{10.1.16,9.0.83,8.5.96}: http request smuggling
918700 - Assigned to Gentoo Security
www-servers/h2o: multiple vulnerabilities
919882 - Assigned to Gentoo Security
<www-servers/nginx-1.25.4: segmentation fault might occur while processing a specially crafted QUIC session
924619 - Assigned to Gentoo Security
<www-servers/apache-2.4.59: HTTP/2 CONTINUATION frames can be utilized for DoS attacks
928540 - Assigned to Gentoo Security
Contact Information
Please file new vulnerability reports on
Gentoo Bugzilla
and assign them to the Gentoo Security product and Vulnerabilities component.