You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description:
Envoy is a cloud-native, open source edge and service proxy. A crash was observed in EnvoyQuicServerStream::OnInitialHeadersComplete() with following call stack. It is a use-after-free caused by QUICHE continuing push request headers after StopReading() being called on the stream. As after StopReading(), the HCM's ActiveStream might have already be destroyed and any up calls from QUICHE could potentially cause use after free.
CVE-2024-32974 references github.com/envoyproxy/envoy, which may be a Go module.
Description:
Envoy is a cloud-native, open source edge and service proxy. A crash was observed in
EnvoyQuicServerStream::OnInitialHeadersComplete()
with following call stack. It is a use-after-free caused by QUICHE continuing push request headers afterStopReading()
being called on the stream. As afterStopReading()
, the HCM'sActiveStream
might have already be destroyed and any up calls from QUICHE could potentially cause use after free.References:
Cross references:
See doc/triage.md for instructions on how to triage this report.
The text was updated successfully, but these errors were encountered: