CVE-2025-62504

Envoy Lua filter use-after-free is fixed in versions 1.36.2, 1.35.6, 1.34.10, and 1.33.12. The vulnerability occurs when a Lua script rewriting the response body causes the size to exceed per_connection_buffer_limit_bytes, leading to a local reply that can override headers and crash the process, ...

CVE-2025-62504 Envoy Lua filter use-after-free when oversized rewritten response body causes crash

Envoy is an open source edge and service proxy. Envoy versions earlier than 1.36.2, 1.35.6, 1.34.10, and 1.33.12 contain a use-after-free vulnerability in the Lua filter. When a Lua script executing in the response phase rewrites a response body so that its size exceeds the configured...

CVE-2025-62504 Envoy Lua filter use-after-free when oversized rewritten response body causes crash

Envoy is an open source edge and service proxy. Envoy versions earlier than 1.36.2, 1.35.6, 1.34.10, and 1.33.12 contain a use-after-free vulnerability in the Lua filter. When a Lua script executing in the response phase rewrites a response body so that its size exceeds the configured...

ISC BIND 9 DNS64 and RPZ Assertion Failure Denial of Service Vulnerability

ISC BIND is the United States Internet Systems Consortium ISC company maintains a set of open source software that implements the DNS protocol. ISC BIND 9 suffers from a DNS64 and RPZ Assertion Failure Denial of Service vulnerability. An attacker can exploit the vulnerability by rewriting the que...