Opened 6 years ago
Closed 6 years ago
#6149 defect closed duplicate (duplicate)
Possible DoS in HTTP chunked decoder
| Reported by: | Corbin Simpson | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | |
| Component: | web | Keywords: | |
| Cc: | jknight | Branch: | |
| Author: |
Description
Reported by "ivan" on #twisted.web, along with a PoC.
Only scratched the surface, but I don't see why this isn't a valid problem; the attached PoC does definitely chew 20% of my CPU in return for pegging the target Twisted Web server at 100% on another core.
Attachments (1)
Change History (3)
comment:1 Changed 6 years ago by
| Cc: | jknight added |
|---|
Changed 6 years ago by
comment:2 Changed 6 years ago by
| Resolution: | → duplicate |
|---|---|
| Status: | new → closed |
Duplicate of #3795. Sorry 'bout that.
Note: See
TracTickets for help on using
tickets.
PoC for #6149, from ivan