CVE-2024-36387 Information

Description

Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference leading to a crash of the server process degrading performance.

Reference

https://httpd.apache.org/security/vulnerabilities_24.html