Описание
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.4.15-1ubuntu0.1 |
| devel | released | 0.4.15-13ubuntu1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 0.4.15-1ubuntu0.1 |
| esm-infra/focal | released | 0.4.15-10ubuntu1.1 |
| esm-infra/xenial | released | 0.4.11-5ubuntu1.1 |
| focal | released | 0.4.15-10ubuntu1.1 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a rem ...
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.
EPSS
5 Medium
CVSS2
7.5 High
CVSS3