Apache HTTP server - (bulletinjul2017)ID: oval:org.secpod.oval:def:2101165 | Date: (C)2019-12-30 (M)2024-02-19 |
Class: PATCH | Family: unix |
A maliciously constructed HTTP/2 request could cause mod_http2 in Apache HTTP Server 2.4.24, 2.4.25 to dereference a NULL pointer and crash the server process.
Product: |
web/server/apache-24 |
web/server/apache-24/module/apache-ssl |
web/server/apache-24/module/apache-ssl-fips-140 |
web/server/apache-24/module/apache-lua |
web/server/apache-24/module/apache-ldap |
web/server/apache-24/module/apache-dbd |