Описание
In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the network stack can freeze under heavy ingress traffic. This can result in a denial of service on the microVM when it is configured with a single network interface, and an availability problem for the microVM network interface on which the issue is triggered.
Ссылки
- Mailing ListThird Party Advisory
- MitigationThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- MitigationThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:amazon:firecracker:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:amazon:firecracker:0.21.0:*:*:*:*:*:*:*
cpe:2.3:a:amazon:firecracker:0.21.1:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00497
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the network stack can freeze under heavy ingress traffic. This can result in a denial of service on the microVM when it is configured with a single network interface, and an availability problem for the microVM network interface on which the issue is triggered.
EPSS
Процентиль: 65%
0.00497
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo