CVE-2021-39275 log

Source
Severity Low
Remote Yes
Type Arbitrary code execution
Description
In Apache HTTP Server before version 2.4.49, ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may.
Group Package Affected Fixed Severity Status Ticket
AVG-2289 apache 2.4.48-1 2.4.49-1 High Fixed
References
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-39275