Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2022-28614 - log back

CVE-2022-28614 edited at 08 Jun 2022 11:09:38

Severity

-	Unknown
+	Low

Description

+	The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function.

References

Notes

CVE-2022-28614 created at 08 Jun 2022 11:05:02