CVE-2014-0242

Priority
Description
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might
allow remote attackers to obtain sensitive information via the Content-Type
header which is generated from memory that may have been freed and then
overwritten by a separate thread.
Notes
Package
Upstream:released (3.4)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (3.4-4ubuntu2)
Patches:
Upstream:https://github.com/GrahamDumpleton/mod_wsgi/commit/b0a149c1f5e569932325972e2e20176a42e43517
More Information

Updated: 2020-03-18 22:14:40 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)