oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2023-31122: Apache HTTP Server: mod_macro buffer over-read

From: Stefan Eissing <icing () apache org>
Date: Thu, 19 Oct 2023 09:40:10 +0000
Severity: low

Affected versions:

- Apache HTTP Server through 2.4.57

Description:

Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 
2.4.57.

Credit:

David Shoon (github/davidshoon) (finder)

References:

https://httpd.apache.org/security/vulnerabilities_24.html
https://httpd.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-31122

Timeline:

2023-04-04: Reported to security team
Previous By Date Next
Previous By Thread Next

Current thread: