Description
Memory leak in the http_request_parse function in request.c in lighttpd before 1.4.20 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests with duplicate request headers.
Remediation
References
Related Vulnerabilities
Joomla! Core 4.x.x Multiple Vulnerabilities (4.0.0 - 4.2.6)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4279)
PHP Out-of-bounds Read Vulnerability (CVE-2019-9023)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2097)