Description
When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour.
Remediation
References
Related Vulnerabilities
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-28333)
Drupal Core 8.0.x Multiple Vulnerabilities (8.0.0 - 8.0.3)
OpenSSL Resource Management Errors Vulnerability (CVE-2006-2937)
phpBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-16108)