发布时间: 2022年3月26日
修改时间: 2024年10月31日
If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.
| NVD | openEuler | |
|---|---|---|
| Confidentiality | None | Low |
| Attack Vector | Network | Network |
| CVSS评分 | 9.1 | 7.3 |
| Attack Complexity | Low | Low |
| Privileges Required | None | None |
| Scope | Unchanged | Unchanged |
| Integrity | High | Low |
| User Interaction | None | None |
| Availability | High | Low |
| 公告名 | 概要 | 发布时间 |
|---|---|---|
| KylinSec-SA-2022-1464 | httpd security update | 2022年3月26日 |
| 产品 | 包 | 状态 |
|---|---|---|
| KY3.4-4A | httpd | Fixed |
| KY3.4-5 | httpd | Fixed |
