CVE-2017-9789

Опубликовано: 13 июл. 2017

Источник: debian

EPSS Средний

Описание

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
apache2	not-affected			package

Примечания

https://httpd.apache.org/security/vulnerabilities_24.html#2.4.27

EPSS

Процентиль: 93%

0.11126

Средний

Связанные уязвимости

CVE-2017-9789

CVSS3: 7.5

ubuntu

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

CVE-2017-9789

CVSS3: 6.5

redhat

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

CVE-2017-9789

CVSS3: 7.5

nvd

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

GHSA-p7q7-pxmj-xgvj

CVSS3: 7.5

github

больше 3 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

openSUSE-SU-2018:0291-1

suse-cvrf

около 8 лет назад

Recommended update for apache2

EPSS

Процентиль: 93%

0.11126

Средний