3 matches found
Denial Of Service (DoS)
distribution is vulnerable to Denial of Service DoS attacks. The vulnerability is due to the /v2/catalog endpoint which may potentially cause Denial of Service conditions on systems running on a memory restricted environment. The endpoint has an optional parameter n for the max amount of records...
GHSA-HQXW-F8MX-CPMW distribution catalog API endpoint can lead to OOM via malicious user input
Impact Systems that run distribution built after a specific commit running on memory-restricted environments can suffer from denial of service by a crafted malicious /v2/catalog API endpoint request. Patches Upgrade to at least 2.8.2-beta.1 if you are running v2.8.x release. If you use the code...
distribution catalog API endpoint can lead to OOM via malicious user input
Impact Systems that run distribution built after a specific commit running on memory-restricted environments can suffer from denial of service by a crafted malicious /v2/catalog API endpoint request. Patches Upgrade to at least 2.8.2-beta.1 if you are running v2.8.x release. If you use the code...