BSA-2017-376
21666
20 September 2018
25 August 2017
Closed
High
7.4
N/A
CVE-2017-9789
Summary
Security Advisory ID : BSA-2017-376
Component : Apache HTTPD
Revision : 3.0: Final
When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behavior.
Products Confirmed Not Vulnerable
No Brocade Fibre Channel technology products from Broadcom are currently known to be affected by this vulnerability.
Revision History
| Version | Change | Date |
|---|---|---|
| 1.0 | Initial Publication | August 25, 2017 |
| 2.0 | Updated to address BNA & WC | October 27, 2017 |
| 3.0 | Updated to reflect Fibre Channel products only | September 20, 2018 |