CVE-2016-1546 — Out-of-bounds Write in Apache Http Server

CWE-399 CWE-787 — Out-of-bounds Write16 documents8 sources

Severity

5.9MEDIUMNVD

EPSS

41.5%

top 2.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Http Server

Timeline

PublishedJul 6

Latest updateMay 13

Description

The Apache HTTP Server 2.4.17 and 2.4.18, when mod_http2 is enabled, does not limit the number of simultaneous stream workers for a single HTTP/2 connection, which allows remote attackers to cause a denial of service (stream-processing outage) via modified flow-control windows.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages1 packages

▶NVDapache/http_server2.4.17, 2.4.18+1

Patches

Patch: httpd.apache.org ↗Patch: httpd.apache.org ↗

🔴Vulnerability Details

GHSA

GHSA-f6fj-787v-v59m: The Apache HTTP Server 2↗2022-05-13

▶

OSV

CVE-2016-1546: The Apache HTTP Server 2↗2016-07-06

▶

CVEList

CVE-2016-1546: The Apache HTTP Server 2↗2016-07-06

▶

📋Vendor Advisories

Red Hat

libtiff: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c↗2016-06-15

▶

Red Hat

httpd: mod_http2 denial-of-service by thread starvation↗2016-04-11

▶

Debian

CVE-2016-1546: apache2 - The Apache HTTP Server 2.4.17 and 2.4.18, when mod_http2 is enabled, does not li...↗2016

▶

Apache

Apache httpd: CVE-2016-1546↗

▶

💬Community

Bugzilla

CVE-2016-1546 httpd: httpd24: Denial-of-service by thread starvation [fedora-all]↗2016-05-16

▶

Bugzilla

CVE-2016-1546 httpd: mod_http2 denial-of-service by thread starvation↗2016-05-16

▶

Bugzilla

CVE-2016-3945 libtiff: out-of-bounds write in the tiff2rgba tool↗2016-04-08

▶

Bugzilla

CVE-2015-8784 libtiff: out-of-bound write in NeXTDecode()↗2016-01-25

▶

Bugzilla

CVE-2015-8665 libtiff: Out-of-bounds read in tif_getimage.c↗2015-12-28

▶