CVE-2019-10081 Information
Share on:Description
HTTP/2 (2.4.20 through 2.4.39) very early pushes for example configured with \H2PushResource\ could lead to an overwrite of memory in the pushing request’s pool leading to crashes. The memory copied is that of the configured push link header values not data supplied by the client.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Reference
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00004.html https://httpd.apache.org/security/vulnerabilities_24.html https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@3Ccvs.httpd.apache.org3E https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@3Ccvs.httpd.apache.org3E https://seclists.org/bugtraq/2019/Aug/47 https://security.gentoo.org/glsa/201909-04 https://security.netapp.com/advisory/ntap-20190905-0003/ https://support.f5.com/csp/article/K84341091?utm_source=f5support&utm_medium=RSS https://usn.ubuntu.com/4113-1/ https://www.debian.org/security/2019/dsa-4509 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.oracle.com/security-alerts/cpujul2020.html https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
7.5