An issue in the Proxygen handling of HTTP2 parsing of headers/trailers can lead to a denial-of-service attack. This affects Proxygen prior to v2018.12.31.00.
References
Link | Resource |
---|---|
https://github.com/facebook/proxygen/commit/223e0aa6bc7590e86af1e917185a2e0efe160711 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: facebook
Published: 2018-12-31T22:00:00
Updated: 2018-12-31T21:57:01
Reserved: 2018-01-26T00:00:00
Link: CVE-2018-6347
JSON object: View
NVD Information
Status : Modified
Published: 2018-12-31T22:29:00.687
Modified: 2019-10-09T23:41:47.893
Link: CVE-2018-6347
JSON object: View
Redhat Information
No data.