CVE-2024-2653
Published
CVSS v3
8.2
HIGH
CVSS v2
N/A
Affected
2
PROJECTS
Description
amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.
An advanced async HTTP client library for PHP, enabling efficient, non-blocking, and concurrent requests and responses.
GitHub