exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2022-29228

около 3 лет назад

Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT() in newer versions and corrupts memory on earlier versions. continueDecoding() shouldn’t ever be called from filters after a local reply has been sent. Users are advised to upgrade. There are no known workarounds for this issue.

CVSS3: 7.5

EPSS: Низкий

CVE-2022-29228

около 3 лет назад

Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT() in newer versions and corrupts memory on earlier versions. continueDecoding() shouldn’t ever be called from filters after a local reply has been sent. Users are advised to upgrade. There are no known workarounds for this issue.

CVSS3: 7.5

EPSS: Низкий

CVE-2022-29228

около 3 лет назад

Envoy is a cloud-native high-performance proxy. In versions prior to 1 ...

CVSS3: 7.5

EPSS: Низкий

ELSA-2022-9589

около 3 лет назад

ELSA-2022-9589: olcne security update (IMPORTANT)

EPSS: Низкий

ELSA-2022-9588

около 3 лет назад

ELSA-2022-9588: olcne security update (IMPORTANT)

EPSS: Низкий

ELSA-2022-9587

около 3 лет назад

ELSA-2022-9587: olcne security update (IMPORTANT)

EPSS: Низкий

ELSA-2022-9586

около 3 лет назад

ELSA-2022-9586: olcne security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-29228 Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT() in newer versions and corrupts memory on earlier versions. continueDecoding() shouldn’t ever be called from filters after a local reply has been sent. Users are advised to upgrade. There are no known workarounds for this issue.	CVSS3: 7.5	0% Низкий	около 3 лет назад
CVE-2022-29228 Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT() in newer versions and corrupts memory on earlier versions. continueDecoding() shouldn’t ever be called from filters after a local reply has been sent. Users are advised to upgrade. There are no known workarounds for this issue.	CVSS3: 7.5	0% Низкий	около 3 лет назад
CVE-2022-29228 Envoy is a cloud-native high-performance proxy. In versions prior to 1 ...	CVSS3: 7.5	0% Низкий	около 3 лет назад
ELSA-2022-9589 ELSA-2022-9589: olcne security update (IMPORTANT)			около 3 лет назад
ELSA-2022-9588 ELSA-2022-9588: olcne security update (IMPORTANT)			около 3 лет назад
ELSA-2022-9587 ELSA-2022-9587: olcne security update (IMPORTANT)			около 3 лет назад
ELSA-2022-9586 ELSA-2022-9586: olcne security update (IMPORTANT)			около 3 лет назад

Уязвимостей на страницу