CVE 2017-7659
A maliciously constructed HTTP/2 request could cause mod_http2 in Apache HTTP Server 2.4.24, 2.4.25 to dereference a NULL pointer and crash the server process.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MLIST: [announce@httpd.apache...
- BID: 99132
- SECTRACK: 1038711
- GENTOO: GLSA-201710-32
- DEBIAN: DSA-3896
- CONFIRM: https://support.apple....
- REDHAT: RHSA-2017:2483
- CONFIRM: https://security.netap...
- CONFIRM: https://support.hpe.co...
- MLIST: [httpd-cvs] 20190815 s...
- MLIST: [httpd-cvs] 20190815 s...
- CONFIRM: https://www.tenable.co...
- MLIST: [httpd-cvs] 20200401 s...
- MLIST: [httpd-cvs] 20200401 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210603 s...
- MLIST: [httpd-cvs] 20210606 s...
- MLIST: [httpd-cvs] 20210606 s...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)