suse · CVE-2017-7659

Quick triage

Priority: low Published: 2021-05-30 13:55:06 UTC Updated: 2025-11-05 04:01:58 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-7659 severity low: SUSE including 27 source package names (apache2, apache2-2.4.23-29.13.1, …), 88 product×package rows across 21 product lines (SUSE Linux Enterprise High Performance Computing 12 SP5, SUSE Linux Enterprise Server 11 SP1 for Teradata, … (21 product lines)): Fixed 58, Known Not Affected 30.

Description:

A maliciously constructed HTTP/2 request could cause mod_http2 in Apache HTTP Server 2.4.24, 2.4.25 to dereference a NULL pointer and crash the server process.

cvelogic Threat Intelligence