Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/95061 | Third Party Advisory VDB Entry |
https://github.com/h2o/h2o/issues/1144 | Patch Third Party Advisory |
https://jvn.jp/en/jp/JVN44566208/index.html | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2017-06-09 16:29
Updated : 2024-02-28 16:04
NVD link : CVE-2016-7835
Mitre link : CVE-2016-7835
CVE.ORG link : CVE-2016-7835
JSON object : View
Products Affected
h2o_project
- h2o
dena
- h2o
CWE
CWE-416
Use After Free