A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second SEND_HEADERS response packet instead of a CPONG.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-08-31T00:00:00

Updated: 2024-08-03T00:03:05.119Z

Reserved: 2022-04-12T00:00:00

Link: CVE-2022-1319

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-08-31T16:15:09.410

Modified: 2024-11-21T06:40:28.920

Link: CVE-2022-1319

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-04-11T00:00:00Z

Links: CVE-2022-1319 - Bugzilla