Joe Orton

**Name of the Vulnerable Software and Affected Versions** Apache libapreq2 versions 2.16 and earlier **Description** A flaw in Apache libapreq2 could cause a buffer overflow while processing multipart form uploads. A remote attacker could send a request causing a process crash, which could lead to a denial of service attack. **Recommendations** For Apache libapreq2 versions 2.16 and earlier, consider updating to a version later than 2.16 to resolve the issue. As a temporary workaround, consider restricting access to multipart form uploads to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** neon versions prior to 0.28.6 **Description** The issue arises from improper handling of a '0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate when OpenSSL or GnuTLS is used. This allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. **Recommendations** For versions prior to 0.28.6, update to version 0.28.6 or later to resolve the issue. As a temporary workaround, consider restricting the use of SSL servers with certificates containing a '0' character in the domain name until a patch is available.

**Name of the Vulnerable Software and Affected Versions** neon versions 0.28.0 through 0.28.2 **Description** The issue allows remote servers to cause a denial of service, resulting in a NULL pointer dereference and crash. This is related to Digest authentication, specifically the Digest domain parameter support, and the `parse domain` function. **Recommendations** For versions 0.28.0 through 0.28.2, consider disabling Digest authentication as a temporary workaround until a patch is available. Restrict access to the `parse domain` function to minimize the risk of exploitation.