Apache HTTP Server: Resource Exhaustion Denial of Service

Summary

A flaw in the Apache HTTP Server can cause a denial of service if an attacker sends a large number of requests, leading to resource exhaustion. This means the server may become unresponsive or slow down, affecting website performance. To fix this, update to the latest version of the Apache HTTP Server.

What to do

Update google platform/frameworks/base to version 16-qpr2-next:2026-03-01.
Update google platform/frameworks/base to version 15:2026-03-01.
Update google platform/frameworks/base to version 16:2026-03-01.
Update google platform/frameworks/base to version 16-qpr2:2026-03-01.
Update google platform/frameworks/base to version 14:2026-03-01.

Affected software

Vendor	Product	Affected versions	Fix available
google	android	13.0	–
google	android	14.0	–
google	android	15.0	–
google	android	16.0	–
google	android	16.0	–
google	android	16.0	–
google	android	16.0	–
google	platform/frameworks/base	> 16-qpr2-next:0 , <= 16-qpr2-next:2026-03-01	16-qpr2-next:2026-03-01
google	platform/frameworks/base	> 15:0 , <= 15:2026-03-01	15:2026-03-01
google	platform/frameworks/base	> 16:0 , <= 16:2026-03-01	16:2026-03-01
google	platform/frameworks/base	> 16-qpr2:0 , <= 16-qpr2:2026-03-01	16-qpr2:2026-03-01
google	platform/frameworks/base	> 14:0 , <= 14:2026-03-01	14:2026-03-01

Original title

In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to remote denial of service with no additional execution ...

Original description

In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

nvd CVSS3.1 6.5

Vulnerability type

CWE-400 Uncontrolled Resource Consumption