DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-34161

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-34161

CGA ID

CGA-pjj7-f5v9-p299

Description

When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module and the network infrastructure supports a Maximum Transmission Unit (MTU) of 4096 or greater without fragmentation, undisclosed QUIC packets can cause NGINX worker processes to leak previously freed memory.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images