Lucene search
GitHub_MCVELIST:CVE-2022-29228HistoryJun 09, 2022 - 7:20 p.m.
CVE-2022-29228 Reachable assertion in Envoy
2022-06-0919:20:13
CWE-617
GitHub_M
raw.githubusercontent.com
2
0.001 Low
EPSS
Percentile
38.7%
Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 the OAuth filter would try to invoke the remaining filters in the chain after emitting a local response, which triggers an ASSERT() in newer versions and corrupts memory on earlier versions. continueDecoding() shouldn’t ever be called from filters after a local reply has been sent. Users are advised to upgrade. There are no known workarounds for this issue.
Related
osv
osv
CVE-2022-29228
2022-06-09 20:15:08
BIT-envoy-2022-29228
2024-03-06 10:54:44
prion
prion
Design/Logic Flaw
2022-06-09 20:15:00
cnvd
cnvd
Envoy has an unspecified vulnerability (CNVD-2022-82668)
2022-06-10 00:00:00
redhatcve
redhatcve
CVE-2022-29228
2022-06-30 20:38:15
veracode
veracode
Denial Of Service (DoS)
2022-09-13 00:45:03
cve
cve
CVE-2022-29228
2022-06-09 20:15:08
oraclelinux
oraclelinux
olcne security update
2022-07-11 00:00:00
olcne security update
2022-07-11 00:00:00
olcne security update
2022-07-12 00:00:00
nessus
nessus
Oracle Linux 7 : olcne (ELSA-2022-9587)
2022-07-12 00:00:00
Oracle Linux 8 : olcne (ELSA-2022-9586)
2022-07-12 00:00:00
Oracle Linux 8 : olcne (ELSA-2022-9588)
2022-07-12 00:00:00
redhat
redhat