[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2022-22719: Apache HTTP Server: mod_lua Use of uninitialized value of in r:parseb
From: Stefan Eissing <icing () apache ! org>
Date: 2022-03-14 10:09:26
Message-ID: 1c308233-7941-7a34-a1b7-5221e48be8e0 () apache ! org
[Download RAW message or body]
Severity: moderate
Description:
A carefully crafted request body can cause a read to a random memory area =
which could cause the process to crash.
This issue affects Apache HTTP Server 2.4.52 and earlier.
Credit:
Chamal De Silva
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic