CVE 2017-2670
It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: https://bugzilla.redha...
- DEBIAN: DSA-3906
- REDHAT: RHSA-2017:1409
- REDHAT: RHSA-2017:1410
- REDHAT: RHSA-2017:1411
- REDHAT: RHSA-2017:1412
- REDHAT: RHSA-2017:3454
- REDHAT: RHSA-2017:3455
- REDHAT: RHSA-2017:3456
- REDHAT: RHSA-2017:3458
- BID: 98965
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)