Apache httpd 2.4.26 HTTP/2 Handling Code Memory Access Vulnerability

Apache httpd 2.4.26 HTTP/2 Handling Code Memory Access Vulnerability

CVE-2017-9789 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.

Learn more about our Cis Benchmark Audit For Apache Http Server.