- Vulnerability/
- USN-7469-1
USN-7469-1: Apache Traffic Server vulnerability
First published: Mon Apr 28 2025(Updated: )
It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly use this issue to cause Apache Traffic Server to crash, resulting in a denial of service.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache Traffic Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of USN-7469-1?
The severity of USN-7469-1 is classified as high due to its potential for causing a denial of service.
How do I fix USN-7469-1?
To fix USN-7469-1, you should upgrade to Apache Traffic Server version 9.1.1+ds-2ubuntu0.1~esm1 or 8.0.5+ds-3ubuntu0.1~esm1, depending on your Ubuntu version.
Which versions of Ubuntu are affected by USN-7469-1?
USN-7469-1 affects Ubuntu 22.04 and 20.04 systems that have Apache Traffic Server installed.
What components are impacted by USN-7469-1?
USN-7469-1 impacts the Apache Traffic Server and Apache Traffic Server Development packages.
Is there a workaround for USN-7469-1 pending a fix?
Currently, there are no known workarounds for USN-7469-1, making an upgrade the primary mitigation.
- agent/title
- agent/source
- agent/last-modified-date
- agent/type
- agent/description
- agent/first-publish-date
- collector/usn
- source/Ubuntu
- agent/references
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/apache
- canonical/apache traffic server