StackStorm before 3.4.1, in some situations, has an infinite loop that consumes all available memory and disk space. This can occur if Python 3.x is used, the locale is not utf-8, and there is an attempt to log Unicode data (from an action or rule name).
References
Link | Resource |
---|---|
https://stackstorm.com/2021/03/10/stackstorm-v3-4-1-security-fix/ | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-18T02:16:23
Updated: 2021-03-18T02:16:23
Reserved: 2021-03-18T00:00:00
Link: CVE-2021-28667
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-18T03:15:12.047
Modified: 2021-03-25T13:44:17.310
Link: CVE-2021-28667
JSON object: View
Redhat Information
No data.
CWE