Описание
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.4.9-1ubuntu2 |
| esm-infra-legacy/trusty | not-affected | 2.4.7-1ubuntu4 |
| lucid | not-affected | 2.2.14-5ubuntu8.13 |
| precise | not-affected | 2.2.22-1ubuntu1.6 |
| trusty | not-affected | 2.4.7-1ubuntu4 |
| trusty/esm | not-affected | 2.4.7-1ubuntu4 |
| upstream | released | 2.4.7 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.
The cache_invalidate function in modules/cache/cache_storage.c in the ...
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.
Уязвимость программного обеспечения Apache HTTP Server, позволяющая удаленному злоумышленнику нарушить доступность защищаемой информации
EPSS
4.3 Medium
CVSS2