Skip to content

[UNDERTOW-2280][UNDERTOW-2336][UNDERTOW-2339] CVE-2023-5379 CVE-2024-1459 CVE-2024-1635 Backport bug fixes #1559

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
fl4via merged 3 commits into from
Mar 2, 2024
Merged

[UNDERTOW-2280][UNDERTOW-2336][UNDERTOW-2339] CVE-2023-5379 CVE-2024-1459 CVE-2024-1635 Backport bug fixes #1559

fl4via merged 3 commits into from
Mar 2, 2024

Conversation

@fl4via
Copy link
Member

@fl4via fl4via commented Feb 21, 2024

fl4via and others added 3 commits February 21, 2024 10:23
@fl4via
[UNDERTOW-2280] CVE-2023-5379 At AjpReadListener, do not close the co…
88df48a 
…nnection if read is larger than maxRequestSize

Signed-off-by: Flavia Rainone <[email protected]>
@TomasHofman @fl4via
[UNDERTOW-2339] CVE-2024-1459 Path segment "/..;" should not be treat…
40bb331 
…ed as "/.."

Proxies such as httpd proxy do not resolve the path segment "/..;/" to
be a double dot segment, so they would pass such request path unchanged
to target server. Undertow on the other hand resolves "/..;/" as double
dot, which can cause essentially a path traversal problem, where client
can request resources that should not be available to him per proxy
configuration.

Signed-off-by: Flavia Rainone <[email protected]>
@fl4via
[UNDERTOW-2336] CVE-2024-1635 At WriteTimeoutStreamSinkConduit, add a…
e824766 
… close listener to guarantee that handle is removed if necessary. Also, synchronize when creating/removing the handle.

Signed-off-by: Flavia Rainone <[email protected]>
@fl4via fl4via added backport The PR is the result of backporting another PR to a maintainance branch waiting CI check Ready to be merged but waiting for CI check labels Feb 21, 2024
@fl4via fl4via changed the title [UNDERTOW-2280][UNDERTOW-2336][UNDERTOW-2339] Backport bug fixes [UNDERTOW-2280][UNDERTOW-2336][UNDERTOW-2339] CVE-2023-5379 CVE-2024-1459 CVE-2024-1635 Backport bug fixes Feb 21, 2024
@fl4via fl4via removed the waiting CI check Ready to be merged but waiting for CI check label Mar 2, 2024
@fl4via fl4via merged commit 3cdb104 into undertow-io:2.2.x Mar 2, 2024
@fl4via fl4via deleted the 2.2.x_backport_bug_fixes branch March 2, 2024 09:46
@fl4via fl4via mentioned this pull request Apr 10, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

backport The PR is the result of backporting another PR to a maintainance branch

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@fl4via @TomasHofman