CVE-2024-2653

HIGH

amphttp <unknown> - Buffer Overflow

Title source: llm

Description

amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.

Exploits (1)

github WORKING POC 15 stars

by lockness-Ko · gopoc

https://github.com/lockness-Ko/CVE-2024-27316

View Code ZIP pw:eip

References (4)

[Mailing List] http://www.openwall.com/lists/oss-security/2024/04/03/16

[Vendor Advisory] https://github.com/amphp/http-client/security/advisories/GHSA-w8gf-g2vq-j2f4

[Vendor Advisory] https://github.com/amphp/http/security/advisories/GHSA-qjfw-cvjf-f4fm

[Third Party Advisory, US Government Resource] https://www.kb.cert.org/vuls/id/421644

Scores

CVSS v3 8.2

EPSS 0.0507

EPSS Percentile 89.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Details

Status published

Products (5)

AMPHP/amphp/http 2.0.0-beta.1 - 2.1.0

AMPHP/amphp/http v1.6.0-rc1 - 1.7.2

AMPHP/amphp/http-client v4.0.0-rc10 - 4.0.0

amphp/http 2.0.0 - 2.1.1Packagist

amphp/http-client 4.0.0-rc10Packagist

Published Apr 03, 2024

Tracked Since Feb 18, 2026