CVE-2024-53270

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-53270
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53270.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-53270
Aliases
Published
2024-12-18T19:12:18.775Z
Modified
2025-12-01T19:41:46.419795Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
HTTP/1: sending overload crashes when the request is reset beforehand in envoy
Details

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions sendOverloadError is going to assume the active request exists when envoy.load_shed_points.http1_server_abort_dispatch is configured. If active_request is nullptr, only onMessageBeginImpl() is called. However, the onMessageBeginImpl will directly return ok status if the stream is already reset leading to the nullptr reference. The downstream reset can actually happen during the H/2 upstream reset. As a result envoy may crash. This issue has been addressed in releases 1.32.3, 1.31.5, 1.30.9, and 1.29.12. Users are advised to upgrade. Users unable to upgrade may disable http1_server_abort_dispatch load shed point and/or use a high threshold.

Database specific 
{
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/53xxx/CVE-2024-53270.json",
    "cwe_ids": [
        "CWE-670"
    ]
}
References

Affected packages

Git / github.com/envoyproxy/envoy

Affected ranges

Type
GIT
Repo
https://github.com/envoyproxy/envoy
Events
Introduced
86dc7ef91ca15fb4957a74bd599397413fc26a24
Fixed
58bd599ebd5918d4d005de60954fcd2cb00abd95
Database specific 
{
    "versions": [
        {
            "introduced": "1.32.0"
        },
        {
            "fixed": "1.32.3"
        }
    ]
}
Type
GIT
Repo
https://github.com/envoyproxy/envoy
Events
Introduced
7b8baff1758f0a584dcc3cb657b5032000bcb3d7
Fixed
688c4bbe47f4d05bb8ed268f5172bb026cf03242
Database specific 
{
    "versions": [
        {
            "introduced": "1.31.0"
        },
        {
            "fixed": "1.31.5"
        }
    ]
}
Type
GIT
Repo
https://github.com/envoyproxy/envoy
Events
Introduced
50ea83e602d5da162df89fd5798301e22f5540cf
Fixed
e409e0a2cedef46b5229f1a603125dccf779e540
Database specific 
{
    "versions": [
        {
            "introduced": "1.30.0"
        },
        {
            "fixed": "1.30.9"
        }
    ]
}
Type
GIT
Repo
https://github.com/envoyproxy/envoy
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
5c3dc559371181d5baa4a7533c36f2370fc97581
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.29.12"
        }
    ]
}

Affected versions

v1.*

v1.0.0
v1.1.0
v1.10.0
v1.11.0
v1.12.0
v1.13.0
v1.14.0
v1.15.0
v1.16.0
v1.17.0
v1.18.0
v1.18.1
v1.18.2
v1.19.0
v1.2.0
v1.20.0
v1.21.0
v1.22.0
v1.23.0
v1.24.0
v1.25.0
v1.26.0
v1.27.0
v1.28.0
v1.29.0
v1.29.1
v1.29.10
v1.29.11
v1.29.2
v1.29.3
v1.29.4
v1.29.5
v1.29.6
v1.29.7
v1.29.8
v1.29.9
v1.3.0
v1.30.0
v1.30.1
v1.30.2
v1.30.3
v1.30.4
v1.30.5
v1.30.6
v1.30.7
v1.30.8
v1.31.0
v1.31.1
v1.31.2
v1.31.3
v1.31.4
v1.32.0
v1.32.1
v1.32.2
v1.4.0
v1.5.0
v1.6.0
v1.7.0
v1.8.0
v1.9.0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-53270.json"