CVE-2019-11939 — Denial of service via malicious message size declaration in github.com/facebook/

描述

Thrift Servers preallocate memory for the declared size of messages before checking the actual size of the message. This allows a malicious user to send messages that declare that they are significantly larger than they actually are, allowing them to force the server to allocate significant amounts of memory. This can be used as a denial of service vector.

如何修補 CVE-2019-11939

要修補 CVE-2019-11939,請將受影響套件升級到下列已修補版本。

—升級至 0.31.1-0.20200311080807-483ed864d69f 或更新版本
—升級至 0.31.1-0.20200311080807-483ed864d69f 或更新版本

CVE-2019-11939 正在被利用嗎?

低 — EPSS 為 0.5%,目前沒有觀察到大規模利用活動。

受影響套件(2)

from 0, < 0.31.1-0.20200311080807-483ed864d69f
from 0, < 0.31.1-0.20200311080807-483ed864d69f

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

參考連結(5)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2019-11939
PATCHgithub.com/facebook/fbthrift
WEBgithub.com/facebook/fbthrift/commit/483ed864d69f307e9e3b9dadec048216100c0757
WEBpkg.go.dev/vuln/GO-2021-0082
WEB