Actions
Security #6481
closed
PA
PA
http2: quadratic complexity in find_or_create_tx not bounded by max-tx
Security #6481:
http2: quadratic complexity in find_or_create_tx not bounded by max-tx
Git IDs:
80abc22f6475b6a87a33166729a871203f34d578
Severity:
CRITICAL
Disclosure Date:
01/16/2024
Description
As a single parsing round can create more transactions than max-tx
Found by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63345
PA Updated by Philippe Antoine over 2 years ago
- Status changed from New to In Review
Gitlab
VJ Updated by Victor Julien over 2 years ago
- Target version changed from 7.0.3 to 8.0.0-beta1
- Label Needs backport to 7.0 added
OT Updated by OISF Ticketbot over 2 years ago
- Subtask #6531 added
OT Updated by OISF Ticketbot over 2 years ago
- Label deleted (
Needs backport to 7.0)
PA Updated by Philippe Antoine over 2 years ago
- Disclosure Date set to 01/16/2024
VJ Updated by Victor Julien over 2 years ago
- Severity changed from MODERATE to CRITICAL
Issue is about number of transactions created from a single block of data. Since the minimal size to create a tx is small, it can still be a very large number.
VJ Updated by Victor Julien over 2 years ago
- Label Needs backport to 6.0 added
OT Updated by OISF Ticketbot over 2 years ago
- Subtask #6660 added
OT Updated by OISF Ticketbot over 2 years ago
- Label deleted (
Needs backport to 6.0)
VJ Updated by Victor Julien about 2 years ago
- Status changed from In Review to Resolved
- CVE set to 2024-23836
PA Updated by Philippe Antoine about 2 years ago
- Status changed from Resolved to Closed
- Git IDs updated (diff)
VJ Updated by Victor Julien about 2 years ago
- Private changed from Yes to No
Actions