Description
Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache, when configured to use a CRL, allows remote attackers to cause a denial of service (child process crash) via a CRL that causes a buffer overflow of one null byte.
Remediation
References
Related Vulnerabilities
WordPress Plugin TinyMCE Custom Styles Cross-Site Scripting (1.1.2)
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27901)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-33816)
WordPress Plugin Scoutnet Kalender Cross-Site Scripting (1.1.0)