CNCF Envoy through 1.13.0 may consume excessive amounts of memory when proxying HTTP/1.1 requests or responses with many small (i.e. 1 byte) chunks.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2020:0734 | Third Party Advisory |
https://github.com/envoyproxy/envoy/security/advisories/GHSA-jwcm-4pwp-c2qv | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/05/msg00025.html | Mailing List Third Party Advisory |
https://www.envoyproxy.io/docs/envoy/v1.13.1/intro/version_history | Release Notes Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-04T20:43:55
Updated: 2022-05-18T13:06:17
Reserved: 2020-02-06T00:00:00
Link: CVE-2020-8659
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-03-04T21:15:11.340
Modified: 2022-09-30T22:56:25.990
Link: CVE-2020-8659
JSON object: View
Redhat Information
No data.
CWE