← back
CVE-2019-18836

CVE-2019-18836

EPSS 1.9%
Envoy 1.12.0 allows a remote denial of service because of resource loops, as demonstrated by a single idle TCP connection being able to keep a worker thread in an infinite busy loop when continue_on_listener_filters_timeout is used."
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.envoyproxy.iohttps://github.com/envoyproxy/envoy/security/advisories/GHSA-3xvf-4396-cj46https://github.com/istio/istio/issues/18229https://groups.google.com/forum/#%21forum/envoy-users