Headline
CVE-2021-43826: Build software better, together
Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions of Envoy a crash occurs when configured for :ref:upstream tunneling <envoy_v3_api_field_extensions.filters.network.tcp_proxy.v3.TcpProxy.tunneling_config> and the downstream connection disconnects while the the upstream connection or http/2 stream is still being established. There are no workarounds for this issue. Users are advised to upgrade.
Use-after-free when tunneling TCP over HTTP, if downstream disconnects during upstream connection establishment
Moderate
mattklein123 published GHSA-cmx3-fvgf-83mf
Feb 22, 2022
Package
envoy (C++)
Affected versions
1.21.0 and earlier
Patched versions
1.18.6, 1.19.3, 1.20.2, 1.21.1
Description
CVSS Score 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L
Impact
Denial of Service (Crash)
Patches****Workarounds
No.
References
https://blog.envoyproxy.io
https://github.com/envoyproxy/envoy/releases
For more information
Open an issue in Envoy repo
Email us at envoy-security
CVE ID
CVE-2021-43826
CWEs
CWE-416
CVSS Score
6.1 Moderate
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L