CVE-2021-32778 log
Source |
|
Severity | High |
Remote | Yes |
Type | Denial of service |
Description | Envoy, as used by Istio before version 1.11.1, contains a remotely exploitable vulnerability where an Envoy client opening and then resetting a large number of HTTP/2 requests could lead to excessive CPU consumption. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2321 | istio | 1.11.0-1 | 1.11.1-1 | High | Fixed |
References |
---|
https://istio.io/latest/news/security/istio-security-2021-008/#cve-2021-32778 |