CVE-2017-2670

Опубликовано: 27 июл. 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.

Релиз	Статус	Примечание
artful	not-affected	1.4.18-1
bionic	not-affected	1.4.18-1
cosmic	not-affected	1.4.18-1
devel	not-affected	2.3.8-2
disco	not-affected	1.4.18-1
eoan	not-affected	1.4.18-1
esm-apps/bionic	not-affected	1.4.18-1
esm-apps/focal	not-affected	1.4.18-1
esm-apps/jammy	not-affected	1.4.18-1
esm-apps/noble	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2017-2670

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-2670

CVSS3: 7.5

redhat

больше 8 лет назад

It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.

CVE-2017-2670

CVSS3: 7.5

nvd

больше 7 лет назад

It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.

CVE-2017-2670

CVSS3: 7.5

debian

больше 7 лет назад

It was found in Undertow before 1.3.28 that with non-clean TCP close, ...

GHSA-3x7h-5hfr-hvjm

CVSS3: 7.5

github

больше 7 лет назад

Moderate severity vulnerability that affects io.undertow:undertow-core

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-2670

Описание

Пакет undertow

Ссылки на источники

Связанные уязвимости