CVE-2018-1000168 — NULL Pointer Dereference in Nghttp2

CWE-476 — NULL Pointer Dereference CWE-20 — Improper Input Validation6 documents4 sources

Severity

7.5HIGH

No vector

EPSS

3.4%

top 12.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Nghttp2 Msrc CM1 Nodejs 14.17.2-1 ON CBL Mariner 1.0

Timeline

PublishedApr 12

Latest updateMay 8

Description

nghttp2: Null pointer dereference when too large ALTSVC frame is received nghttp2 version >= 1.10.0 and nghttp2 = 1.31.1. Package: nghttp2 (Red Hat Enterprise Linux 8) - Not affected Package: httpd24-nghttp2 (Red Hat Software Collections) - Not affected Package: rh-nodejs8-nodejs (Red Hat Software Collections) - Not affected

Affected Packages2 packages

▶debiandebian/nghttp2< nghttp2 1.31.1-1 (bookworm)

▶msrcmsrc/cm1_nodejs_14.17.2-1_on_cbl_mariner_1.0

📋Vendor Advisories

Microsoft

nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service.↗2018-05-08

▶

Red Hat

nghttp2: Null pointer dereference when too large ALTSVC frame is received↗2018-04-12

▶

Debian

CVE-2018-1000168: nghttp2 - nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Vali...↗2018

▶

💬Community

Bugzilla

CVE-2018-1000168 nghttp2: Null pointer dereference when too large ALTSVC frame is received [epel-7]↗2018-04-13

▶

Bugzilla

CVE-2018-1000168 nghttp2: Null pointer dereference when too large ALTSVC frame is received [fedora-all]↗2018-04-13

▶

Bugzilla

CVE-2018-1000168 nghttp2: Null pointer dereference when too large ALTSVC frame is received↗2018-04-09

▶