CVE-2019-3883

2019-04-12T13:50:18
ID RH:CVE-2019-3883
Type redhatcve
Reporter redhat.com
Modified 2020-11-10T14:59:59

Description

It was found that encrypted connections did not honor the 'ioblocktimeout' parameter to end blocking requests. As a result, an unauthenticated attacker could repeatedly start a sufficient number of encrypted connections to block all workers, resulting in a denial of service.