An invalid free in Thrift's table-based serialization can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2021.02.22.00.
References
Link | Resource |
---|---|
https://github.com/facebook/fbthrift/commit/bfda1efa547dce11a38592820916db01b05b9339 | Patch Third Party Advisory |
https://www.facebook.com/security/advisories/cve-2021-24028 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: facebook
Published: 2021-04-13T23:20:13
Updated: 2021-04-13T23:20:12
Reserved: 2021-01-13T00:00:00
Link: CVE-2021-24028
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-04-14T00:15:13.057
Modified: 2021-04-21T15:38:52.500
Link: CVE-2021-24028
JSON object: View
Redhat Information
No data.
CWE