Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft the upstream PPv2 header. This occurs when the downstream request has a command type of LOCAL and does not have the protocol block. This issue has been addressed in releases 1.29.1, 1.28.1, 1.27.3, and 1.26.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-02-09T22:41:54.896Z
Updated: 2024-08-01T22:59:32.196Z
Reserved: 2024-01-15T15:19:19.441Z
Link: CVE-2024-23327
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-02-09T23:15:09.647
Modified: 2024-11-21T08:57:31.030
Link: CVE-2024-23327
Redhat