CVSS Score 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L, Medium
Sending a locally generated response must stop further processing of request or response data. Envoy tracks the amount of buffered request and response data and aborts the request if the amount of buffered data is over the limit by sending 413 or 500 responses. However when the buffer overflows while response is processed by the filter chain the operation may not be aborted correctly and result in accessing a freed memory block.
Impact
Denial of Service
Patches
Has the problem been patched? What versions should users upgrade to?
Workarounds
Disable filters that may modify a response body and increase its size if feasible.
References
https://blog.envoyproxy.io
https://github.com/envoyproxy/envoy/releases
For more information
Open an issue in Envoy repo
Email us at envoy-security
CVSS Score 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L, Medium
Sending a locally generated response must stop further processing of request or response data. Envoy tracks the amount of buffered request and response data and aborts the request if the amount of buffered data is over the limit by sending 413 or 500 responses. However when the buffer overflows while response is processed by the filter chain the operation may not be aborted correctly and result in accessing a freed memory block.
Impact
Denial of Service
Patches
Has the problem been patched? What versions should users upgrade to?
Workarounds
Disable filters that may modify a response body and increase its size if feasible.
References
https://blog.envoyproxy.io
https://github.com/envoyproxy/envoy/releases
For more information
Open an issue in Envoy repo
Email us at envoy-security