Description
Memory leak in the http_request_parse function in request.c in lighttpd before 1.4.20 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests with duplicate request headers.
Remediation
References
Related Vulnerabilities
Spring Cloud Gateway Improper Certificate Validation Vulnerability (CVE-2022-22946)
WordPress Plugin ReFlex Gallery Arbitrary File Upload (3.1.3)
Perl Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2018-12015)
WordPress Plugin RSS Feed Widget Cross-Site Scripting (2.8.0)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Multiple Vulnerabilities (4.0.3)