CVE-2013-4352

The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.

Date published : 2014-07-20

http://httpd.apache.org/security/vulnerabilities_24.html

http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/cache/cache_storage.c