Description

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active request exists when `envoy.load_shed_points.http1_server_abort_dispatch` is configured. If `active_request` is nullptr, only onMessageBeginImpl() is called. However, the `onMessageBeginImpl` will directly return ok status if the stream is already reset leading to the nullptr reference. The downstream reset can actually happen during the H/2 upstream reset. As a result envoy may crash. This issue has been addressed in releases 1.32.3, 1.31.5, 1.30.9, and 1.29.12. Users are advised to upgrade. Users unable to upgrade may disable `http1_server_abort_dispatch` load shed point and/or use a high threshold.

INFO

Published Date :

2024-12-18T19:12:18.775Z

Last Modified :

2024-12-18T21:35:24.476Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-53270 vulnerability.

Vendors Products
Envoyproxy
  • Envoy
Redhat
  • Service Mesh
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-53270.

URL Resource
https://github.com/envoyproxy/envoy/pull/37743/commits/6cf8afda956ba67c9afad185b962325a5242ef02 cve-icon cve-icon cve-icon
https://github.com/envoyproxy/envoy/security/advisories/GHSA-q9qv-8j52-77p3 cve-icon cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-53270 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-53270 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact