FreeBSD : h2o -- use after free on premature connection close (65bb1858-27de-11e6-b714-74d02b9a84d5)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Tim Newsha reports :

When H2O tries to disconnect a premature HTTP/2 connection, it calls
free(3) to release memory allocated for the connection and immediately
after then touches the memory. No malloc-related operation is
performed by the same thread between the time it calls free and the
time the memory is touched. Fixed by Frederik Deweerdt.

See also :

https://h2o.examp1e.net/vulnerabilities.html
http://www.nessus.org/u?9a61f3ef

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 91437 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now