UBUNTU-CVE-2020-10719
- Source
- https://ubuntu.com/security/CVE-2020-10719
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-10719.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-10719
- Related
- Published
- 2020-05-26T16:15:00Z
- Modified
- 2024-10-15T14:07:24Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.
- References
Affected packages
Ubuntu:Pro:16.04:LTS / undertow
Package
- Name
- undertow
- Purl
- pkg:deb/ubuntu/undertow?arch=src?distro=esm-apps/xenial
Ubuntu:Pro:18.04:LTS / undertow
Package
- Name
- undertow
- Purl
- pkg:deb/ubuntu/undertow?arch=src?distro=esm-apps/bionic
Ubuntu:20.04:LTS / undertow
Package
- Name
- undertow
- Purl
- pkg:deb/ubuntu/undertow?arch=src?distro=focal
Ubuntu:22.04:LTS / undertow
Package
- Name
- undertow
- Purl
- pkg:deb/ubuntu/undertow?arch=src?distro=jammy
Ubuntu:24.10 / undertow
Package
- Name
- undertow
- Purl
- pkg:deb/ubuntu/undertow?arch=src?distro=oracular