Back to bug 1866559

Who When What Removed Added
Pedro Sampaio 2020-08-05 21:54:16 UTC CC security-response-team
Pedro Sampaio 2020-08-05 22:15:50 UTC Blocks 1866566
Tomas Hoger 2020-08-06 07:41:47 UTC Fixed In Version httpd 2.4.46 httpd 2.4.24
Tomas Hoger 2020-08-06 07:42:04 UTC Comment 0 updated
Huzaifa S. Sidhpurwala 2020-08-10 06:24:57 UTC Depends On 1867471, 1867472, 1867473
Huzaifa S. Sidhpurwala 2020-08-10 06:51:44 UTC Doc Text A flaw was found in the mod_remoteip module shipped with httpd package. An attacker could use this flaw to spoof IP address and could result in bypass of a mod_rewrite rule.
Guilherme de Almeida Suckevicz 2020-08-11 19:43:34 UTC Group security, qe_staff
CC anon.amish, jkaluza, pahan
Summary EMBARGOED CVE-2020-11985 httpd: IP address spoofing when proxying using mod_remoteip and mod_rewrite CVE-2020-11985 httpd: IP address spoofing when proxying using mod_remoteip and mod_rewrite
Guilherme de Almeida Suckevicz 2020-08-11 19:45:38 UTC Depends On 1868147
RaTasha Tillery-Smith 2020-08-12 15:33:55 UTC Doc Text A flaw was found in the mod_remoteip module shipped with httpd package. An attacker could use this flaw to spoof IP address and could result in bypass of a mod_rewrite rule. A flaw was found in the mod_remoteip module shipped with the httpd package. This flaw allows an attacker to spoof the IP address, resulting in the bypass of a mod_rewrite rule. The highest threat from this vulnerability is to integrity.
Yasuhiro Ozone 2020-08-18 00:34:22 UTC CC yozone
Huzaifa S. Sidhpurwala 2020-08-24 02:28:44 UTC Depends On 1867473
Jim Lyle 2020-08-26 11:43:22 UTC CC jlyle
Huzaifa S. Sidhpurwala 2020-08-27 01:56:21 UTC Depends On 1867473
Tomas Hoger 2021-03-22 11:37:20 UTC Depends On 1404778
Tomas Hoger 2021-03-22 11:43:42 UTC Depends On 1404778
Red Hat Bugzilla 2022-10-28 13:12:42 UTC CC krathod
Red Hat Bugzilla 2023-03-02 08:28:13 UTC CC myarboro
Red Hat Bugzilla 2023-07-07 08:35:27 UTC Assignee security-response-team nobody
CC security-response-team

Back to bug 1866559