Lucene search

K
fedoraFedoraFEDORA:EFC9C204B8F9
HistoryAug 17, 2023 - 12:34 a.m.

[SECURITY] Fedora 37 Update: llhttp-8.1.1-1.fc37

2023-08-1700:34:27
lists.fedoraproject.org
16
fedora 37
llhttp port
typescript
http_parser
llparse
c source
node.js
llhttp_strict_mode
unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

7.8

Confidence

High

EPSS

0.002

Percentile

59.0%

This project is a port of http_parser to TypeScript. llparse is used to generate the output C source file, which could be compiled and linked with the embedder’s program (like Node.js). This copy of the library is compiled with LLHTTP_STRICT_MODE set to 0 (disabled), which is the default.

OSVersionArchitecturePackageVersionFilename
Fedora37anyllhttp< 8.1.1UNKNOWN

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

7.8

Confidence

High

EPSS

0.002

Percentile

59.0%