CVE-2018-8011

Summary

By specially crafting HTTP requests, the mod_md challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server. Fixed in Apache HTTP Server 2.4.34 (Affected 2.4.33).

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache HTTP ServerFixed in Apache HTTP Server 2.4.34 (Affected 2.4.33)affected

Weaknesses

  • (undefined)

ADP Enrichment

CVE Program Container

Additional References

References