The remove_chunked_transfer_coding function allows remote attackers to cause a denial of service via crafted chunk-encoded content. The client_host function in parsers.c allows remote attackers to cause a denial of service via an empty HTTP Host header