2020
04.22

haproxy hpack-tbl.c Out-Of-Bounds Write

Category: exploit / Tags: no tag / Add Comment

The haproxy hpack implementation in hpack-tbl.c handles 0-length HTTP headers incorrectly. This can lead to a fully controlled relative out-of-bounds write when processing a malicious HTTP2 request (or response).

No Comment.

Add Your Comment

Your Comment

You must be logged in to post a comment.