CVE-2017-9789

Опубликовано: 13 июл. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

Релиз	Статус	Примечание
devel	released	2.4.27-2ubuntu2
esm-infra-legacy/trusty	not-affected	HTTP/2 disabled
esm-infra/xenial	not-affected	HTTP/2 disabled
precise/esm	not-affected	HTTP/2 disabled
trusty	not-affected	HTTP/2 disabled
trusty/esm	not-affected	HTTP/2 disabled
upstream	released	2.4.27
vivid/ubuntu-core	DNE
xenial	not-affected	HTTP/2 disabled
yakkety	not-affected	HTTP/2 disabled

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-9789

CVSS3: 6.5

redhat

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

CVE-2017-9789

CVSS3: 7.5

nvd

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

CVE-2017-9789

CVSS3: 7.5

debian

больше 8 лет назад

When under stress, closing many connections, the HTTP/2 handling code ...

GHSA-p7q7-pxmj-xgvj

CVSS3: 7.5

github

больше 3 лет назад

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

openSUSE-SU-2018:0291-1

suse-cvrf

около 8 лет назад

Recommended update for apache2

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-9789

Описание

Пакет apache2

Ссылки на источники

Связанные уязвимости