CVE-2017-9789
Published: 13 July 2017
When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.
Notes
Author | Note |
---|---|
sbeattie | HTTP/2 support has not been enabled in Ubuntu builds of apache |
Priority
CVSS 3 base score: 7.5