A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.30 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial of Service attack against users of mod_cache_socache. The vulnerability is considered as low risk since mod_cache_socache is not widely used, mod_cache_disk is not concerned by this vulnerability.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
06 Jun 2021, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2018-03-26 15:29
Updated : 2024-02-04 19:46
NVD link : CVE-2018-1303
Mitre link : CVE-2018-1303
CVE.ORG link : CVE-2018-1303
JSON object : View
Products Affected
debian
- debian_linux
netapp
- clustered_data_ontap
- storage_automation_store
- santricity_cloud_connector
- storagegrid
canonical
- ubuntu_linux
apache
- http_server
CWE
CWE-125
Out-of-bounds Read