CVE-2016-7835

Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information.
References
Link Resource
http://www.securityfocus.com/bid/95061 Third Party Advisory VDB Entry
https://github.com/h2o/h2o/issues/1144 Patch Third Party Advisory
https://jvn.jp/en/jp/JVN44566208/index.html Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/95061 Third Party Advisory VDB Entry
https://github.com/h2o/h2o/issues/1144 Patch Third Party Advisory
https://jvn.jp/en/jp/JVN44566208/index.html Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dena:h2o:*:*:*:*:*:*:*:*
cpe:2.3:a:h2o_project:h2o:2.1.0:beta3:*:*:*:*:*:*

History

21 Nov 2024, 02:58

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/95061 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/95061 - Third Party Advisory, VDB Entry
References () https://github.com/h2o/h2o/issues/1144 - Patch, Third Party Advisory () https://github.com/h2o/h2o/issues/1144 - Patch, Third Party Advisory
References () https://jvn.jp/en/jp/JVN44566208/index.html - Third Party Advisory, VDB Entry () https://jvn.jp/en/jp/JVN44566208/index.html - Third Party Advisory, VDB Entry

Information

Published : 2017-06-09 16:29

Updated : 2024-11-21 02:58


NVD link : CVE-2016-7835

Mitre link : CVE-2016-7835

CVE.ORG link : CVE-2016-7835


JSON object : View

Products Affected

h2o_project

  • h2o

dena

  • h2o
CWE
CWE-416

Use After Free