Lucene search
K

4 matches found

Oracle linux
Oracle linux
added 2024/10/30 12:0 a.m.281 views

mod_http2 security update

2.0.26-2.1 - Resolves: RHEL-45803 - modhttp2: DoS by null pointer in websocket over HTTP/2 CVE-2024-36387...

5.4CVSS7.3AI score0.01715EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2018/10/17 4:19 p.m.24 views

Excessive memory allocation

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the WebSocket HTTP upgrade implementation buffers the full http request before doing the handshake, holding the entire request body in memory. There should be a reasonnable limit 8192 bytes above which the WebSocket gets an HTTP response with the...

6.5CVSS1.2AI score0.02652EPSS
Exploits0References19Affected Software1
Prion
Prion
added 2018/10/10 8:29 p.m.17 views

Design/Logic Flaw

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the WebSocket HTTP upgrade implementation buffers the full http request before doing the handshake, holding the entire request body in memory. There should be a reasonnable limit 8192 bytes above which the WebSocket gets an HTTP response with the...

4CVSS7.1AI score0.02652EPSS
Exploits0References16Affected Software1
Cvelist
Cvelist
added 2018/10/10 8:0 p.m.29 views

CVE-2018-12541

In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the WebSocket HTTP upgrade implementation buffers the full http request before doing the handshake, holding the entire request body in memory. There should be a reasonnable limit 8192 bytes above which the WebSocket gets an HTTP response with the...

6.4AI score0.02652EPSS
Exploits0References16
Rows per page
Query Builder