gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64 encoding error for `-bin` suffixed headers will result in a disco ...
Continue Reading
August 15, 2023
Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener's global scope ...
Continue Reading
August 15, 2023
gRPC is vulnerable to Denial Of Service (DoS). The vulnerability exists because the file descriptor is not properly handled, which leads to the termination of the connection between a proxy and a back ...
Continue Reading
August 15, 2023
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation. Security Fix(es): * envoy: Clie ...
Continue Reading
August 11, 2023
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Security Fix(es): * ...
Continue Reading
August 11, 2023
Updates of ['grpc'] packages of Photon OS have been released.Read More ...
Continue Reading
August 11, 2023
github.com/envoyproxy/envoy is vulnerable to Denial of Service (DoS) attacks. When the listener is exhausted, `gRPC` access logs utilizing its global scope may result in a `use-after-free`, which allo ...
Continue Reading
July 28, 2023
## Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of gRPC. ## Vulnerability Details ** CVEID: **[CVE-2023-32732]() ** DESCRIPTION: **gRPC is vulnerable ...
Continue Reading
July 27, 2023
Back to Main
