CVE-2021-29258
N/A
N/A
Summary
An issue was discovered in Envoy 1.14.0. There is a remotely exploitable crash for HTTP2 Metadata, because an empty METADATA map triggers a Reachable Assertion.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://blog.envoyproxy.io
- https://github.com/envoyproxy/envoy-setec/pull/230
- https://github.com/envoyproxy/envoy/releases/tag/v1.14.0
- https://github.com/envoyproxy/envoy/security/advisories/GHSA-xw4q-6pj2-5gfg
References
- https://blog.envoyproxy.io
- https://github.com/envoyproxy/envoy-setec/pull/230
- https://github.com/envoyproxy/envoy/releases/tag/v1.14.0
- https://github.com/envoyproxy/envoy/security/advisories/GHSA-xw4q-6pj2-5gfg
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.