Integer Overflow or Wraparound in Apache Tomcat

Description

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Basic information

Type
reviewed
Severity
medium
Advisory on GitHub
Open advisory ↗
Repository advisory
Source code
Browse source ↗
Published (advisory)
2022-05-14 01:10:19 UTC
Updated
2025-04-14 21:40:20 UTC
GitHub reviewed
2022-07-07 22:54:51 UTC
NVD published
2014-05-31

EPSS Score

Score Percentile
46.75% 97.64%

CVSS Scores

No CVSS scores in this advisory.

Identifiers

CWEs

CWE id Name
CWE-190 Integer Overflow or Wraparound
CWE-400 Uncontrolled Resource Consumption

Credits

  • sunSUNQ (analyst)

Affected packages (6)

Vulnerable version ranges and first patched releases as published by GitHub.

Ecosystem Package Vulnerable range First patched Vulnerable functions
maven org.apache.tomcat:tomcat < 6.0.40 6.0.40
maven org.apache.tomcat:tomcat >= 7.0.0, < 7.0.53 7.0.53
maven org.apache.tomcat:tomcat >= 8.0.0, < 8.0.4 8.0.4
maven org.apache.tomcat:tomcat-coyote < 6.0.40 6.0.40
maven org.apache.tomcat:tomcat-coyote >= 7.0.0, < 7.0.53 7.0.53
maven org.apache.tomcat:tomcat-coyote >= 8.0.0, < 8.0.4 8.0.4

References

cvelogic Threat Intelligence