CVE-2018-6347

CVE-2018-6347 describes a denial-of-service vulnerability in the Proxygen HTTP/2 parser, where handling of HTTP2 headers/trailers can be exploited to trigger a crash or partial outage. The issue affects Proxygen versions prior to 2018.12.31.00. The connected PT-2018-17494 entry and CNVD/NVD recor...

CVE-2018-6346

Summary: CVE-2018-6346 describes a potential denial-of-service in Facebook Proxygen caused by the handling of invalid HTTP/2 priority settings (circular dependency). Affected versions: Proxygen prior to 2018.12.31.00. Root cause: improper processing of priority frames leading to DoS; no exploit d...