Launchpad CVE tracker

CVE 2022-30522

If Apache HTTP Server 2.4.53 is configured to do transformations with mod_sed in contexts where the input to mod_sed may be very large, mod_sed may make excessively large memory allocations and trigger an abort.

Related bugs and status

CVE-2022-30522 (Candidate) is related to these bugs:

Bug #1979641: mod_sed duplicates lines (in 2.4.29-1ubuntu4.24)

		In	Importance	Status
1979641	mod_sed duplicates lines (in 2.4.29-1ubuntu4.24)	apache2 (Ubuntu)	Undecided	Invalid
1979641	mod_sed duplicates lines (in 2.4.29-1ubuntu4.24)	apache2 (Ubuntu Trusty)	Undecided	Fix Released
1979641	mod_sed duplicates lines (in 2.4.29-1ubuntu4.24)	apache2 (Ubuntu Xenial)	Undecided	Fix Released
1979641	mod_sed duplicates lines (in 2.4.29-1ubuntu4.24)	apache2 (Ubuntu Bionic)	Undecided	Fix Released

Bug #1985885: Debian: CVE-2022-28615 / CVE-2022-29404 / CVE-2022-30522 / CVE-2022-31813: apache2: A flaw was found in the mod_proxy module of httpd

Summary				In	Importance	Status
	1985885	Debian: CVE-2022-28615 / CVE-2022-29404 / CVE-2022-30522 / CVE-2022-31813: apache2: A flaw was found in the mod_proxy module of httpd		StarlingX	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2022-30522

References