A Malformed h2 frame can cause 'std::out_of_range' exception when parsing priority meta data. This behavior can lead to denial-of-service. This affects all supported versions of HHVM (3.25.2, 3.24.6, and 3.21.10 and below) when using the proxygen server to handle HTTP2 requests.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: facebook

Published: 2018-12-31T20:00:00

Updated: 2024-08-05T06:01:48.923Z

Reserved: 2018-01-26T00:00:00

Link: CVE-2018-6335

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-31T19:29:00.417

Modified: 2019-10-09T23:41:46.440

Link: CVE-2018-6335

cve-icon Redhat

No data.