A maliciously constructed HTTP/2 request could cause mod_http2 2.4.24, 2.4.25 to dereference a NULL pointer and crash the server process. (CVE-2017-7659)
Impact
A remote attacker can use a maliciously crafted HTTP/2 request to cause an abnormal termination on the Apache httpd service.
CPE | Name | Operator | Version |
---|---|---|---|
big-ip afm | eq | 11.4.1 | |
big-ip afm | eq | 11.5.0 | |
big-ip afm | eq | 11.5.1 | |
big-ip afm | eq | 11.5.2 | |
big-ip afm | eq | 11.5.3 | |
big-ip afm | eq | 11.5.4 | |
big-ip afm | eq | 11.6.0 | |
big-ip afm | eq | 11.6.1 | |
big-ip afm | eq | 12.0.0 | |
big-ip afm | eq | 12.1.0 |