3 matches found
CVE-2011-0419
CVE-2011-0419 is a stack consumption/DoS vulnerability in the APR library’s fnmatch implementation (apr_fnmatch.c) and, for some platforms, in libc’s fnmatch.c. It affects APR < 1.4.3 and Apache HTTP Server
CVE-2017-12613
CVE-2017-12613 affects the Apache Portable Runtime (APR) library: out-of-bounds memory access when apr_time_exp*() or apr_os_exp_time*() are given an invalid month, potentially exposing heap contents or triggering a denial of service. A fix was released in APR 1.6.3 (and later backported in some ...
CVE-2009-2699
The vulnerability CVE-2009-2699 affects the Solaris pollset feature in the Event Port backend (poll/unix/port.c) of the Apache Portable Runtime (APR) library prior to 1.3.9, as used by Apache HTTP Server prior to 2.2.14 and other products. The issue arises from improper error handling in the Sola...