You are viewing a plain text version of this content. The canonical link for it is here.
Posted to announce@trafficserver.apache.org by Bryan Call <bc...@apache.org> on 2017/04/17 23:13:04 UTC
[ANNOUNCE] Chunking and content-length vulnerability in ATS -
CVE-2017-5659
There is a vulnerability in ATS with chunking and content-length that can lead to a DoS attack. Versions 6.2.0 and prior are affected. Please upgrade to ATS 6.2.1 or 7.0.0.
Downloads:
https://trafficserver.apache.org/downloads
Jira Ticket:
https://issues.apache.org/jira/browse/TS-4819
CVE:
https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2017-5659
-Bryan