CVE-2020-1934 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	Yes
Type	Information disclosure
Description	The use of an uninitialized value has been found in Apache HTTP Server from 2.4.0 up to and including 2.4.41, in the mod_proxy_ftp module, when proxying to a malicious FTP server.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1126	apache	2.4.41-1	2.4.43-1	Low	Fixed

Date	Advisory	Group	Package	Severity	Type
15 Apr 2020	ASA-202004-14	AVG-1126	apache	Low	multiple issues

References
https://seclists.org/oss-sec/2020/q2/4 https://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/mod_proxy_ftp.c?r1=1873745&r2=1873744&pathrev=1873745