CVE-2024-2653

HIGH8.2

High EPSS

Description

amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

High

Affected products

AMPHP / amphp/http2.0.0-beta.1 – 2.1.0
AMPHP / amphp/httpv1.6.0-rc1 – 1.7.2
AMPHP / amphp/http-clientv4.0.0-rc10 – 4.0.0

References

VENDOR_ADVISORYhttps://github.com/amphp/http/security/advisories/GHSA-qjfw-cvjf-f4fm
VENDOR_ADVISORYhttps://github.com/amphp/http-client/security/advisories/GHSA-w8gf-g2vq-j2f4
MAILING_LISThttp://www.openwall.com/lists/oss-security/2024/04/03/16