This site requires JavaScript to be enabled to function correctly, please enable it.
Summary:
CVE-2020-7693 npmjs-sockjs: incorrect handling of upgrade header with the value websocket leads to DoS
Product:
[Other] Security Response
Reporter:
Guilherme de Almeida Suckevicz <gsuckevi>
Component:
vulnerability Assignee:
Red Hat Product Security <security-response-team>
Status:
CLOSED
NOTABUG
QA Contact:
Severity:
low
Docs Contact:
Priority:
low
Version:
unspecified CC:
anpicker, bmontgom, eparis, erooth, gparvin, jburrell, jokerman, jramanat, jweiser, lcosic, nstielau, sponnaga, stcannon, surbania, tfister, thee
Target Milestone:
--- Keywords:
Security
Target Release:
---
Hardware:
All
OS:
Linux
Whiteboard:
Fixed In Version:
npmjs-sockjs 0.3.20
Doc Type:
If docs needed, set a value
Doc Text:
Story Points:
---
Clone Of:
Environment:
Last Closed:
2021-11-04 14:54:08 UTC
Type:
---
Regression:
---
Mount Type:
---
Documentation:
---
CRM:
Verified Versions:
Category:
---
oVirt Team:
---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:
---
Target Upstream Version:
Embargoed:
Bug Depends On:
1856408 , 1856409 , 1856410 , 1856411 , 1857039 , 1859405
Bug Blocks:
1856373