Description
In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown.
Remediation
References
Related Vulnerabilities
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-1810)
WordPress Plugin GD Rating System Cross-Site Scripting (2.0.2)
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-1850)
WordPress Plugin World of Warcraft-Armory Table Cross-Site Scripting (0.2.5)