Lucene search

K
fedoraFedoraFEDORA:E9F82204EDB4
HistoryAug 07, 2023 - 1:27 a.m.

[SECURITY] Fedora 38 Update: llhttp-8.1.1-1.fc38

2023-08-0701:27:34
lists.fedoraproject.org
13
fedora 38
llhttp-8.1.1-1.fc38
typescript
http_parser
c source file
node.js
llhttp_strict_mode
unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

5.2

Confidence

High

EPSS

0.002

Percentile

59.0%

This project is a port of http_parser to TypeScript. llparse is used to generate the output C source file, which could be compiled and linked with the embedder’s program (like Node.js). This copy of the library is compiled with LLHTTP_STRICT_MODE set to 0 (disabled), which is the default.

OSVersionArchitecturePackageVersionFilename
Fedora38anyllhttp< 8.1.1UNKNOWN

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

5.2

Confidence

High

EPSS

0.002

Percentile

59.0%