CVE-2018-8011

Priority
Description
By specially crafting HTTP requests, the mod_md challenge handler would
dereference a NULL pointer and cause the child process to segfault. This
could be used to DoS the server. Fixed in Apache HTTP Server 2.4.34
(Affected 2.4.33).
Notes
mdeslauronly affects 2.4.33
Package
Upstream:released (2.4.34)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (2.4.7-1ubuntu4.20)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (2.4.18-2ubuntu3.9)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.4.29-1ubuntu4.2)
More Information

Updated: 2020-01-29 20:04:05 UTC (commit 768ceb2fdee6790d707d0f681e1b54916744af1e)