The HTTP strict parsing changes added in 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or to force ap_find_token() to return an incorrect value. External References: https://httpd.apache.org/security/vulnerabilities_24.html https://httpd.apache.org/security/vulnerabilities_22.html
Created httpd tracking bugs for this issue: Affects: fedora-all [bug 1463208]
Upstream commit: 2.4: https://github.com/apache/httpd/commit/a585e36e06a53170be6d2d462ceb5b30b8382988 2.2: https://github.com/apache/httpd/commit/ad581ced12363ce82ffcb16133f236b2e31563e1
(In reply to Andrej Nemec from comment #0) > The HTTP strict parsing changes added in 2.2.32 and 2.4.24 introduced a bug > in token list parsing, which allows ap_find_token() to search past the end > of its input string. The strict HTTP parsing was a fix for flaw with CVE id CVE-2016-8743 and is tracked via bug 1406822. The change was already backported to multiple Red Hat products, even if they contain older httpd version.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:2479 https://access.redhat.com/errata/RHSA-2017:2479
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 6 Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS Red Hat Software Collections for Red Hat Enterprise Linux 7.3 EUS Via RHSA-2017:2483 https://access.redhat.com/errata/RHSA-2017:2483
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.2 Extended Update Support Via RHSA-2017:3193 https://access.redhat.com/errata/RHSA-2017:3193
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.3 Extended Update Support Via RHSA-2017:3194 https://access.redhat.com/errata/RHSA-2017:3194