| Release | Version |
|---|---|
| jessie | 2.0.7-1+deb8u5 |
| stretch | 2.0.14+20161117-3+deb9u7 |
| stretch (security) | 2.0.14+20161117-3+deb9u5 |
| buster | 2.0.18-1 |
| bullseye | 2.0.19.1-7.1 |
| bookworm | 2.0.21-5.1 |
| trixie | 2.0.28-1 |
| sid | 2.0.28-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-24795 | vulnerable | fixed | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | HTTP Response splitting in multiple modules in Apache HTTP Server allo ... |
| CVE-2023-27522 | vulnerable | fixed | unknown | unknown | unknown | unknown | unknown | HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_pr ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-36160 | fixed | fixed | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A carefully crafted request uri-path can cause mod_proxy_uwsgi to read ... |
| CVE-2020-11984 | fixed | fixed | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure an ... |
| Bug | Description |
|---|---|
| CVE-2018-7490 | uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the ... |
| CVE-2018-6758 | The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through ... |
| DSA / DLA | Description |
|---|---|
| ELA-1095-1 | uwsgi - security update |
| ELA-851-1 | uwsgi - security update |
| DLA-2768-2 | uwsgi - regression update |
| ELA-487-2 | uwsgi - regression update |
| DLA-2768-1 | uwsgi - security update |
| ELA-487-1 | uwsgi - security update |
| DLA-2362-1 | uwsgi - security update |
| ELA-274-1 | uwsgi - security update |
| DSA-4142-1 | uwsgi - security update |
| DLA-1275-1 | uwsgi - security update |