CVE-2023-38039: HTTP header allocation DOS