CVE-2020-13950 log
Source |
|
Severity | Low |
Remote | Yes |
Type | Denial of service |
Description | In Apache HTTP Server versions 2.4.41 to 2.4.46, mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted requests using both Content-Length and Transfer-Encoding headers, leading to a Denial of Service. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2053 | apache | 2.4.46-3 | 2.4.47-1 | Medium | Fixed |
References |
---|
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2020-13950 |