Lucene search
Veracode Vulnerability DatabaseVERACODE:35812HistoryJun 02, 2022 - 8:46 p.m.
Denial Of Service (DoS)
2022-06-0220:46:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
servicemesh-proxy
denial of service
stack exhaustion
cluster deletion
software vulnerability
upgrade
abnormal process termination
EPSS
0.001
Percentile
32.8%
servicemesh-proxy is vulnerable to denial of service. When a cluster is deleted via Cluster Discovery Service (CDS) all idle connections established to endpoints in that cluster are disconnected. A recursion was introduced in the procedure of disconnecting idle connections that can lead to stack exhaustion and abnormal process termination when a cluster has a large number of idle connections. This infinite recursion causes Envoy to crash. Users are advised to upgrade. A flaw was found in envoy. When a cluster is deleted via the Cluster Discovery Service, a stack exhaustion may occur.
Related
redhatcve
redhatcve
CVE-2022-23606
2022-02-23 02:36:52
osv
osv
BIT-envoy-2022-23606
2024-03-06 10:55:43
CVE-2022-23606
2022-02-22 23:15:11
prion
prion
Design/Logic Flaw
2022-02-22 23:15:00
cnvd
cnvd
Envoy has an unspecified vulnerability (CNVD-2022-16288)
2022-02-24 00:00:00
nvd
nvd
CVE-2022-23606
2022-02-22 23:15:11
cvelist
cvelist
CVE-2022-23606 Crash when a cluster is deleted in Envoy
2022-02-22 22:20:13
cve
cve
CVE-2022-23606
2022-02-22 23:15:11
redhat
redhat
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh 2.1.2 (RHSA-2022:1275)
2022-04-08 00:00:00
RHEL 8 : Red Hat OpenShift Service Mesh 2.0.9 (RHSA-2022:1276)
2022-04-08 00:00:00