CVE-2018-1333

Summary

By specially crafting HTTP/2 requests, workers would be allocated 60 seconds longer than necessary, leading to worker exhaustion and a denial of service. Fixed in Apache HTTP Server 2.4.34 (Affected 2.4.18-2.4.30,2.4.33).

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache HTTP ServerFixed in Apache HTTP Server 2.4.34 (Affected 2.4.18-2.4.30,2.4.33)affected

Weaknesses

  • (undefined)

ADP Enrichment

CVE Program Container

Additional References

References