Assigner | certcc |
Reserved | 2024-03-19 |
Published | 2024-04-03 |
Updated | 2024-04-03 |
Description
amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.
Problem types
CWE-789: Memory Allocation with Excessive Size Value
Product status
References
https://github.com/amphp/http/security/advisories/GHSA-qjfw-cvjf-f4fm
https://github.com/amphp/http-client/security/advisories/GHSA-w8gf-g2vq-j2f4
http://www.openwall.com/lists/oss-security/2024/04/03/16