If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and previous versions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server |
||
fedoraproject fedora 34 |
||
fedoraproject fedora 35 |
||
fedoraproject fedora 36 |
||
debian debian linux 9.0 |
||
oracle http server 12.2.1.3.0 |
||
oracle http server 12.2.1.4.0 |
||
oracle enterprise manager ops center 12.4.0.0 |
||
oracle zfs storage appliance kit 8.8 |
||
apple mac os x |
||
apple mac os x 10.15.7 |
||
apple macos |