CVE-2019-11921
N/A
N/A
Summary
An out of bounds write is possible via a specially crafted packet in certain configurations of Proxygen due to improper handling of Base64 when parsing malformed binary content in Structured HTTP Headers. This issue affects versions of proxygen prior to v2019.07.22.00.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Proxygen | v2019.07.22.00 | affected | |
| Proxygen | unspecified < v2019.07.22.00 | affected |
Weaknesses
- Out-of-bounds Write (CWE-ID 787)
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/facebook/proxygen/commit/2f07985bef9fbae124cc63e5c0272e32da4fdaec
- https://www.facebook.com/security/advisories/cve-2019-11921
References
- https://github.com/facebook/proxygen/commit/2f07985bef9fbae124cc63e5c0272e32da4fdaec
- https://www.facebook.com/security/advisories/cve-2019-11921
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.