CVE List

CVE-2019-10082

Severe 9.1

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown.

Published September 26, 2019.

Affected software

Get alerts for Apache HTTP Server

Reference links