CVE-2010-1623

{"id": "CVE-2010-1623", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-10-04T21:00:03.627", "references": [{"url": "http://blogs.sun.com/security/entry/cve_2010_1623_memory_leak", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049885.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049939.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://marc.info/?l=bugtraq&m=130168502603566&w=2", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/41701", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/42015", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/42361", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/42367", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/42403", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/42537", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43211", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/43285", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://security-tracker.debian.org/tracker/CVE-2010-1623", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.627828", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1003492", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1003493", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1003494", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1003495", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1003626", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://ubuntu.com/usn/usn-1021-1", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM31601", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.apache.org/dist/apr/CHANGES-APR-UTIL-1.3", "tags": ["URL Repurposed"], "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:192", "tags": ["URL Repurposed"], "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2010-0950.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/43673", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-1022-1", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/2556", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/2557", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/2806", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/3064", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/3065", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2010/3074", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0358", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12800", "tags": ["Mailing List", "Third Party Advisory"], "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket."}, {"lang": "es", "value": "P\u00e9rdida de memoria en la funci\u00f3n apr_brigade_split_line en buckets/apr_brigade.c en la biblioteca Apache Portable Runtime Utility (tambi\u00e9n conocida como APR-util) en versiones anteriores a 1.3.10, como es usada en el m\u00f3dulo mod_reqtimeout en Apache HTTP Server y otro software, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (consumo de memoria) a trav\u00e9s de vectores no especificados relacionados con la destrucci\u00f3n de un cubo APR."}], "lastModified": "2023-10-03T15:39:37.707", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:apr-util:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3452FCE7-94D2-419B-BDC8-CCEEF997257E", "versionEndIncluding": "1.3.9"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EC87975-74CA-42E6-84ED-0DD2BF9FFC78"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A896FA5-D3FC-4BD9-965A-C9A72D62780D"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8EDB1D0-82A9-462F-9B3B-0EDF452341E2"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9DFFEDC-F5C7-47C7-95A9-6BF4208A1B48"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E87B09F2-ECEA-409D-B27B-0747280D4AC6"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "126268B4-03AF-46B1-9840-80CB461429E1"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "497DE301-1652-40B6-929C-E0FEA4747F72"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0760EF10-E57D-42C6-AB26-9FCFAE40062F"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC6D2840-FF47-470F-B124-743592A6B465"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60ACEF09-740E-4F33-94D3-85CAE7275204"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B355E51C-5CD6-48B9-8354-1F1F04F57AED"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "863D04D6-8F9F-4B11-ACDC-EF52EC9A89F7"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A79C98D4-635D-4CBB-9F29-4C8BB7B8CF0D"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FA24824-09F7-43FF-B28D-EA4783C70072"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F129705-D555-4D48-97CC-82660DC9641E"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56723D23-E6BC-4BB6-931E-5802528BE4A4"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "209C34A8-B339-44C3-B21C-A38F2AE7C8CA"}, {"criteria": "cpe:2.3:a:apache:apr-util:0.9.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC99316E-3B24-4B5E-86F7-2C52F46B12AD"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67AB6223-9546-4906-B502-C82E3969FC76"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6459BE22-2334-48B3-85B8-5BEEB05A5399"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A24FB91C-33BC-4305-AD53-0385E3B3F091"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "617C8C4B-8367-4EFB-8DA1-88986F6CDACA"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D85D6B73-F2CB-427D-9896-6BA79BE96FB5"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39B4A447-29CC-4D35-B25D-FA845785E66B"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08B50283-4187-42F7-A2A3-F5789706708B"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40FD8140-F1E0-4F99-ACDA-926C0ACDC00E"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61D253E8-528E-47B3-887A-C540A8D91E0D"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD1CD8A7-6F0A-4BEB-8E8A-BEDAB71921E3"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1D0594C-E2FF-4557-80E6-8F51A4D94F7A"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14EC5623-76A8-4519-A3F5-B0594B304630"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEC14399-2A54-428F-80E4-196BAF52146E"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CE30137-16C4-41CC-BE90-D8D66224E0E8"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.2.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0BEC1C3-2597-489D-A65B-21F6CFD5A288"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E706184-E7BC-452F-82FE-72EA8C37F4D6"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "867962AD-8EF4-4DC4-96F6-77896CEF3F92"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EB78030-8C3B-4ACA-B62B-DC5DC5FBD073"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E53CBDDE-D914-49A8-B65C-9352487B3CBA"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3C48811-5237-4752-857E-AEA5E879505A"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC3307A0-BCD6-423F-AC32-2E4F1E1310F6"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA93EC05-1936-4A2A-BFE1-E3F3BA2FD20F"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E3B4C44-163C-4D92-9BB0-C3BEC4F65665"}, {"criteria": "cpe:2.3:a:apache:apr-util:1.3.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EBD5602-6DE8-47EC-8464-150D2AA562BC"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "838655CB-43E7-4BDA-A80C-2314C9870717", "versionEndExcluding": "2.0.64", "versionStartIncluding": "2.0.35"}, {"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91F58140-8FBA-4733-9E2B-493BC9E5B284", "versionEndExcluding": "2.2.17", "versionStartIncluding": "2.2.0"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}