CLSA-2021-1632262221
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2021-1632262221.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2021-1632262221
- Upstream
- Published
- 2021-09-21T22:10:21Z
- Modified
- 2026-06-01T00:33:14.996959728Z
- Summary
- Fix of CVE: CVE-2020-8517, CVE-2021-28651, CVE-2020-15049, CVE-2020-8449, CVE-2020-8450, CVE-2020-24606, CVE-2020-25097, CVE-2020-11945, CVE-2020-14058
- Details
-
- CVE-2020-15049: fix incorrect validation of Content-Length field leading to Http smuggling and Poisoning attack
- CVE-2020-14058: fix handling of unknown SSL errors which resulted in denial of service
- CVE-2020-25097: fix improper input validation allowing HTTP smuggling from trusted client
- CVE-2020-11945: fix nonce reference counter overflow allowing replay attack
- CVE-2020-24606: fix handle of EOF in peerDigestHandleReply() leading to Denial of service
- CVE-2020-8517: fix incorrect input validation allowing writing outside of buffer and leading to denial of service
- CVE-2020-8449: fix improper HTTP request validation allowing access to resources which are prohibited by security filters
- CVE-2020-8450: fix incorrect buffer managment leading to buffer overflow
- CVE-2021-28651: fix memory leak leading to denial of service
- References