'[oss-security] CVE-2023-31122: Apache HTTP Server: mod_macro buffer over-read'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2023-31122: Apache HTTP Server: mod_macro buffer over-read
From:       Stefan Eissing <icing () apache ! org>
Date:       2023-10-19 9:40:10
Message-ID: 0c264da3-b6db-d2a0-5a59-ffdffc19dd7b () apache ! org
[Download RAW message or body]

Severity: low

Affected versions:

- Apache HTTP Server through 2.4.57

Description:

Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache \
HTTP Server: through 2.4.57.

Credit:

David Shoon (github/davidshoon) (finder)

References:

https://httpd.apache.org/security/vulnerabilities_24.html
https://httpd.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-31122

Timeline:

2023-04-04: Reported to security team

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic