Unrated severityNVD Advisory· Published Nov 14, 2014· Updated May 6, 2026
CVE-2014-8567
CVE-2014-8567
Description
The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.
Affected products
7- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:6.6:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- linux.oracle.com/errata/ELSA-2014-1803.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-1803.htmlnvdThird Party Advisory
- secunia.com/advisories/62094nvdPermissions RequiredThird Party Advisory
- secunia.com/advisories/62125nvdPermissions RequiredThird Party Advisory
- github.com/UNINETT/mod_auth_mellon/commit/0f5b4fd860fa7e3a6c47201637aab05395f32647nvdThird Party Advisory
- postlister.uninett.no/sympa/arc/modmellon/2014-11/msg00000.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.