You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The worker process of H2O may crash (and automatically respawned depending on the configuration) when it receives a HTTP request with an invalid framing specifier (i.e. content-length or transfer-encoding header).
The crash disrupts other requests in-flight, and therefore is being classified as a DoS vulnerability.
Details TBD.
Affected systems: H2O up to version 2.2.2, serving HTTP/1 traffic.
Resolution: upgrade to 2.2.3.
The text was updated successfully, but these errors were encountered:
The worker process of H2O may crash (and automatically respawned depending on the configuration) when it receives a HTTP request with an invalid framing specifier (i.e. content-length or transfer-encoding header).
The crash disrupts other requests in-flight, and therefore is being classified as a DoS vulnerability.
Details TBD.
Affected systems: H2O up to version 2.2.2, serving HTTP/1 traffic.
Resolution: upgrade to 2.2.3.
The text was updated successfully, but these errors were encountered: