httpd: Use-after-free by limiting unregistered HTTP method (Optionsbleed)

🗓️ 19 Oct 2017 15:26:43Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 4 Views

Httpd use-after-free when unregistered HTTP methods are limited by Limit in .htaccess, enabling disclosure or crash.

Reporter	Title	Published	Views	Family All 228
IBM Security Bulletins	Security Bulletin: Vulnerabilities in httpd affect Power Hardware Management Console	23 Sep 202101:45	–	ibm
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities in IBM HTTP Server (CVE-2017-9798, CVE-2017-12618)	15 Jun 201807:08	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearQuest (CVE-2017-9798, CVE-2017-12618)	4 Feb 202016:40	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2017-9798, CVE-2017-12618)	10 Jul 201808:34	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in apache2 affect IBM Flex System Manager (FSM)	18 Jun 201801:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Issues in IBM Tealeaf Customer Experience PCA	23 Jun 201803:45	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in httpd affects PowerKVM	18 Jun 201801:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Access Manager Appliance is affected by a HTTPD vulnerability (CVE-2017-9798)	16 Jun 201822:05	–	ibm
IBM Security Bulletins	WebSphere Application Server and IBM HTTP Server Security Bulletin List	13 Jul 202218:04	–	ibm
IBM Security Bulletins	Security Bulletin: A Security vulnerability has been identified in Apache HTTP Server used by Rational Build Forge. (CVE-2017-9798)	20 Apr 202014:39	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	6	ppc64	httpd	0:2.2.15-60.el6_9.6	httpd-0:2.2.15-60.el6_9.6.ppc64.rpm
Red Hat Enterprise Linux	6	s390x	httpd	0:2.2.15-60.el6_9.6	httpd-0:2.2.15-60.el6_9.6.s390x.rpm
Red Hat Enterprise Linux	6	x86_64	httpd	0:2.2.15-60.el6_9.6	httpd-0:2.2.15-60.el6_9.6.x86_64.rpm
Red Hat Enterprise Linux	6	any	httpd	0:2.2.15-60.el6_9.6.i686	httpd-0:2.2.15-60.el6_9.6.i686.noarch.rpm
Red Hat Enterprise Linux	6	ppc	httpd-debuginfo	0:2.2.15-60.el6_9.6	httpd-debuginfo-0:2.2.15-60.el6_9.6.ppc.rpm
Red Hat Enterprise Linux	6	ppc64	httpd-debuginfo	0:2.2.15-60.el6_9.6	httpd-debuginfo-0:2.2.15-60.el6_9.6.ppc64.rpm
Red Hat Enterprise Linux	6	s390	httpd-debuginfo	0:2.2.15-60.el6_9.6	httpd-debuginfo-0:2.2.15-60.el6_9.6.s390.rpm
Red Hat Enterprise Linux	6	s390x	httpd-debuginfo	0:2.2.15-60.el6_9.6	httpd-debuginfo-0:2.2.15-60.el6_9.6.s390x.rpm
Red Hat Enterprise Linux	6	x86_64	httpd-debuginfo	0:2.2.15-60.el6_9.6	httpd-debuginfo-0:2.2.15-60.el6_9.6.x86_64.rpm
Red Hat Enterprise Linux	6	any	httpd-debuginfo	0:2.2.15-60.el6_9.6.i686	httpd-debuginfo-0:2.2.15-60.el6_9.6.i686.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2017-9798
blog	www.blog.fuzzing-project.org/60-Optionsbleed-HTTP-OPTIONS-method-can-leak-Apaches-server-memory.html
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-9798
cve	www.cve.org/CVERecord

14 May 2026 22:23Current

7.2High risk

Vulners AI Score7.2

CVSS 25

CVSS 3.17.5

EPSS0.94999

Apache use after free unregistered methods limit directive htaccess memory disclosure crash