Vulnerabilities

CVE-2019-3559

by Fred · 06/05/2019

Java Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.02.18.00.

Date published : 2019-05-06

https://github.com/facebook/fbthrift/commit/a56346ceacad28bf470017a6bda1d5518d0bd943

https://www.facebook.com/security/advisories/cve-2019-3559

Similar

Tags: Cybersecurity Alert