gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for -bin
suffixed headers will result in a disconnection by the gRPC server, but is typically allowed by HTTP2 proxies. We recommend upgrading beyond the commit inΒ https://github.com/grpc/grpc/pull/32309 https://www.google.com/url
CPE | Name | Operator | Version |
---|---|---|---|
grpc | eq | objective-c-v1.0.0-pre1 | |
grpc | eq | 1.1.1 | |
grpc | eq | 1.29.1 | |
grpc | eq | 1.16.1-pre1 | |
grpc | eq | 1.30.0 | |
grpc | eq | 1.18.0 | |
grpc | eq | 1.42.0-de | |
grpc | eq | 1.4.1 | |
grpc | eq | 1.19.0-pre1 | |
grpc | eq | 1.20.0-pre1 |