[IPP] RFC 2817 opossum attack CVE

[Christopher Rizzo]

Apache HTTP server removed support<https://www.google.com/search?q=opossum+attach+rfc+2817&sca_esv=b38e11246799189c&ei=ffsBaqCZK9bI0PEPu-fmqQs&biw=1235&bih=960&ved=0ahUKEwjgy8v9y7GUAxVWJDQIHbuzObUQ4dUDCBE&uact=5&oq=opossum+attach+rfc+2817&gs_lp=Egxnd3Mtd2l6LXNlcnAiF29wb3NzdW0gYXR0YWNoIHJmYyAyODE3MgcQIRgKGKABMgcQIRgKGKABMgcQIRgKGKABMgcQIRgKGKABSKZEUABY0kFwAHgBkAEAmAFGoAG0CKoBAjIzuAEDyAEA-AEBmAIXoAKuCcICCxAAGIAEGIoFGJECwgILEAAYgAQYsQMYgwHCAggQABiABBixA8ICBRAAGIAEwgINEAAYgAQYigUYQxixA8ICChAAGIAEGIoFGEPCAggQLhiABBixA8ICChAAGIAEGLEDGArCAhcQLhiABBixAxiXBRjcBBjeBBjfBNgBAcICDRAuGIAEGIoFGEMYsQPCAhwQLhiABBiKBRhDGLEDGJcFGNwEGN4EGN8E2AEBwgIGEAAYFhgewgIJEAAYFhgeGMcDwgIHEAAYgAQYDcICBhAAGB4YDcICCRAAGB4YDRjHA8ICCBAAGAUYHhgNwgIKEAAYCBgeGA0YCsICCxAAGIAEGIoFGIYDwgIIEAAYgAQYogTCAgUQABjvBcICBRAhGKABwgIFECEYqwKYAwC6BgYIARABGBSSBwIyM6AH4JEBsgcCMjO4B64JwgcIMC41LjE3LjHIB12ACAE&sclient=gws-wiz-serp> for RFC 2817 due to this attack

CVE-2025-49812<https://nvd.nist.gov/vuln/detail/CVE-2025-49812>

Should RFC 2817 test in IPP Everywhere Cert be removed and requirement deprecated?

Either that or vendors using Apache HTTP server to support IPP need to add code or one off patch to Apache in order to restore support for RFC 2817.

Thanks,
Chris

Christopher Rizzo
Engineer II, Software Engineering
Design & Development Engineering

[signature_2761502959]<http://www.xerox.com/>

Xerox Corporation
Virtual Office Employee
26600 SW Parkway Ave
Wilsonville, OR 97070

[signature_3357244689]<https://www.linkedin.com/company/xerox/>   [signature_2647436328] <https://www.youtube.com/user/XeroxCorp>    [signature_1384161422] <https://twitter.com/Xerox>    [signature_4084468971] <https://www.instagram.com/xerox/>    [signature_3621630371] <https://www.facebook.com/XeroxCorp>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 9065 bytes
Desc: image001.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 1409 bytes
Desc: image002.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.png
Type: image/png
Size: 1427 bytes
Desc: image003.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.png
Type: image/png
Size: 1528 bytes
Desc: image004.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment-0003.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image005.png
Type: image/png
Size: 1648 bytes
Desc: image005.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment-0004.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image006.png
Type: image/png
Size: 1456 bytes
Desc: image006.png
URL: <http://www.pwg.org/pipermail/ipp/attachments/20260511/a67a4a77/attachment-0005.png>