CVE-2025-55181

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-55181
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-55181.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-55181
Published
2025-12-02T22:16:08.380Z
Modified
2026-03-13T03:39:00.752876Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
[none]
Details

Sending an HTTP request/response body with greater than 2^31 bytes triggers an infinite loop in proxygen::coro::HTTPQuicCoroSession which blocks the backing event loop and unconditionally appends data to a std::vector per-loop iteration. This issue leads to unbounded memory growth and eventually causes the process to run out of memory.

References

Affected packages

Git / github.com/facebook/proxygen

Affected ranges

Type
GIT
Repo
https://github.com/facebook/proxygen
Events
Introduced
bf9eb7570870c3814641798c3579d1fc8bf70f34
Last affected
9587042e43a9d11a7335828ae738c5b6c2487daf
Fixed
17689399ef99b7c3d3a8b2b768b1dba1a4b72f8f
Database specific 
{
    "versions": [
        {
            "introduced": "2025.08.25.00"
        },
        {
            "last_affected": "2025.12.01.00"
        }
    ]
}

Affected versions

v2025.*
v2025.08.25.00
v2025.09.01.00
v2025.09.08.00
v2025.09.15.00
v2025.09.22.00
v2025.09.29.00
v2025.10.06.00
v2025.10.13.00
v2025.10.20.00
v2025.10.27.00
v2025.11.03.00
v2025.11.10.00
v2025.11.17.00
v2025.11.24.00
v2025.12.01.00

Database specific

vanir_signatures 
[
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "proxygen/lib/http/coro/HTTPCoroSession.cpp"
        },
        "id": "CVE-2025-55181-a6db2c08",
        "deprecated": false,
        "source": "https://github.com/facebook/proxygen/commit/17689399ef99b7c3d3a8b2b768b1dba1a4b72f8f",
        "digest": {
            "line_hashes": [
                "60759821658982022282117689830519914922",
                "150457458327647021500374417426306090234",
                "56989005089917477231612867286611561173",
                "129057363168608832184691582179510646985"
            ],
            "threshold": 0.9
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "target": {
            "file": "proxygen/lib/http/coro/test/HTTPUpstreamCoroSessionTests.cpp"
        },
        "id": "CVE-2025-55181-ad2df51b",
        "deprecated": false,
        "source": "https://github.com/facebook/proxygen/commit/17689399ef99b7c3d3a8b2b768b1dba1a4b72f8f",
        "digest": {
            "line_hashes": [
                "68519772930035997077509746859790150235",
                "128852450290008845650913849062889290057",
                "148828673011898693086555255249423872813"
            ],
            "threshold": 0.9
        }
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-55181.json"