Main Vulnerability Database SB2018041213

SB2018041213 - Denial of service in nghttp2

Published: April 12, 2018

Security Bulletin ID SB2018041213

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2018-1000168)

The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists due to improper bounds checking. If an alternative services (ALTSVC) frame is too large, the pointer field that points to the ALTSVC frame payload is left NULL. A remote attacker can submit a large ALTSVC frame, trigger a NULL pointer dereference and cause the service to crash.

Remediation

Install update from vendor's website.

References

https://nghttp2.org/blog/2018/04/12/nghttp2-v1-31-1/