{
  "modified": "2025-08-09T19:01:26Z",
  "published": "2014-11-15T21:59:06Z",
  "id": "CVE-2014-8566",
  "details": "The mod_auth_mellon module before 0.8.1 allows remote attackers to obtain sensitive information or cause a denial of service (segmentation fault) via unspecified vectors related to a \"session overflow\" involving \"sessions overlapping in memory.\"",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://rhn.redhat.com/errata/RHSA-2014-1803.html"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/62094"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/62125"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/UNINETT/mod_auth_mellon/releases/tag/v0.8.1"
    },
    {
      "type": "ADVISORY",
      "url": "https://postlister.uninett.no/sympa/arc/modmellon/2014-11/msg00000.html"
    },
    {
      "type": "FIX",
      "url": "https://github.com/UNINETT/mod_auth_mellon/releases/tag/v0.8.1"
    },
    {
      "type": "FIX",
      "url": "https://postlister.uninett.no/sympa/arc/modmellon/2014-11/msg00000.html"
    },
    {
      "type": "WEB",
      "url": "http://linux.oracle.com/errata/ELSA-2014-1803.html"
    }
  ]
}