The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server prior to 2.4.11 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP Content-Type header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server 2.4.1 |
||
apache http server 2.4.6 |
||
apache http server 2.4.3 |
||
apache http server 2.4.4 |
||
apache http server 2.4.10 |
||
apache http server 2.4.7 |
||
apache http server 2.4.2 |
||
apache http server 2.4.9 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 12.04 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux eus 7.3 |
||
redhat enterprise linux eus 7.4 |
||
redhat enterprise linux eus 7.5 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux eus 7.6 |
||
redhat enterprise linux server aus 7.7 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux eus 7.7 |
||
oracle enterprise manager ops center 12.2.1 |
||
oracle enterprise manager ops center 12.3.0 |
||
oracle enterprise manager ops center 12.2.0 |
||
oracle linux 6 |
||
oracle enterprise manager ops center |