HTTP2: Apache Tomcat Http2Parser Denial of Service
This signature detects attempts to exploit a known vulnerability against HTTP/2 module of Apache Tomcat. A successful attack can result in a denial-of-service condition.
Extended Description
Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98. Users are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.
Affected Products
Fedoraproject fedora
References
CVE: CVE-2024-24549
URL: https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg
Short Name
HTTP2:APACHE-TMCT-HTTP2PRSR-DOS
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP2
Keywords
Apache CVE-2024-24549 Denial Http2Parser Service Tomcat of
Release Date
07/04/2024
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
Sigpack Version
3809
False Positive
Unknown
Vendors
Apache
Fedoraproject
Debian