Description
In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown.
Remediation
References
Related Vulnerabilities
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2891)
PHP Other Vulnerability (CVE-2003-0442)
WordPress 3.7.x Cross-Domain Flash Injection Vulnerability (3.7 - 3.7.24)
Moodle Other Vulnerability (CVE-2019-10188)
OpenSSL Improper Access Control Vulnerability (CVE-2016-7054)