Vulnerability CVE-2022-28614: Information
Description
The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the 'ap_rputs' function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue.
Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| apache2 | sisyphus | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-2087-1 | 302326 | Fixed |
| apache2 | sisyphus_e2k | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-5404-1 | - | Fixed |
| apache2 | sisyphus_riscv64 | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-5255-1 | - | Fixed |
| apache2 | p10 | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-2095-1 | 302327 | Fixed |
| apache2 | p10_e2k | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-5301-1 | - | Fixed |
| apache2 | p9 | 2.4.55-alt1 | 2.4.58-alt1 | ALT-PU-2023-1260-1 | 314497 | Fixed |
| apache2 | p9_e2k | 2.4.55-alt1 | 2.4.57-alt2 | ALT-PU-2023-2671-1 | - | Fixed |
| apache2 | c10f1 | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-2095-1 | 302327 | Fixed |
| apache2 | c9f2 | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-2093-1 | 302328 | Fixed |
| apache2 | p11 | 2.4.54-alt1 | 2.4.59-alt1 | ALT-PU-2022-2087-1 | 302326 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| [oss-security] 20220608 CVE-2022-28614: Apache HTTP Server: read beyond bounds via ap_rwrite() |
|
| https://httpd.apache.org/security/vulnerabilities_24.html |
|
| https://security.netapp.com/advisory/ntap-20220624-0005/ |
|
| GLSA-202208-20 |
|
| FEDORA-2022-e620fb15d5 | |
| FEDORA-2022-b54a8dee29 |