CVE-2024-2653

HIGH

amphttp <unknown> - Buffer Overflow

Title source: llm

Description

amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.

Exploits (1)

github WORKING POC 15 stars

by lockness-Ko · gopoc

https://github.com/lockness-Ko/CVE-2024-27316

View Code ZIP pw:eip

References (4)

[Mailing List] http://www.openwall.com/lists/oss-security/2024/04/03/16

[Vendor Advisory] https://github.com/amphp/http-client/security/advisories/GHSA-w8gf-g2vq-j2f4

[Vendor Advisory] https://github.com/amphp/http/security/advisories/GHSA-qjfw-cvjf-f4fm

[Third Party Advisory, US Government Resource] https://www.kb.cert.org/vuls/id/421644

Scores

CVSS v3 8.2

EPSS 0.0394

EPSS Percentile 88.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Classification

Status draft

Affected Products (2)

amphp/http < 2.1.1Packagist

amphp/http-client Packagist

Timeline

Published Apr 03, 2024

Tracked Since Feb 18, 2026