REDHAT-BUG-1404782: Medium severity undertow vulnerability
Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers" (default 200) "max-header-size" (default 1MB) per active TCP connection.
Upstream bug:
https://issues.jboss.org/browse/WFLY-7725
Affected Software
Event History
Frequently Asked Questions
What is the severity of REDHAT-BUG-1404782?
The severity of REDHAT-BUG-1404782 is considered high due to potential denial of service caused by memory exhaustion.
How do I fix REDHAT-BUG-1404782?
To fix REDHAT-BUG-1404782, you should update JBoss Undertow to the latest version which contains patches for this vulnerability.
What are the affected systems by REDHAT-BUG-1404782?
Affected systems by REDHAT-BUG-1404782 include those running JBoss Undertow with persistent connections.
Can REDHAT-BUG-1404782 lead to data breaches?
While REDHAT-BUG-1404782 primarily leads to denial of service, it does not directly cause data breaches.
Is there a workaround for REDHAT-BUG-1404782?
A temporary workaround for REDHAT-BUG-1404782 may involve limiting the number of active TCP connections or adjusting header limits.