VDB

GCVE-110-MAGEIA-2020-373

GCVE-110-MAGEIA-2020-373
Advisory Published
Vulnetix · Advisory published September 27, 2020
url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion. (CVE-2020-25219)

Affected Products

VendorProductVersionsPlatforms
Mageialibproxy0 (affected), 0.4.15-4.1.mga7 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›