CVE-2018-21027 (v3: 9.8)
11 Oct 2019
Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled.