RUSTSEC-2020-0008: Flaw in hyper allows request smuggling by sending a body in GET requests #1

github-actions · 2020-07-31T00:22:32Z

Flaw in hyper allows request smuggling by sending a body in GET requests

Details
Package	`hyper`
Version	`0.11.27`
URL	hyperium/hyper#1925
Date	2020-03-19
Patched versions	`>= 0.12.34`
Unaffected versions	`< 0.11.0`

Vulnerable versions of hyper allow GET requests to have bodies, even if there is
no Transfer-Encoding or Content-Length header. As per the HTTP 1.1
specification, such requests do not have bodies, so the body will be interpreted
as a separate HTTP request.

This allows an attacker who can control the body and method of an HTTP request
made by hyper to inject a request with headers that would not otherwise be
allowed, as demonstrated by sending a malformed HTTP request from a Substrate
runtime. This allows bypassing CORS restrictions. In combination with other
vulnerabilities, such as an exploitable web server listening on loopback, it may
allow remote code execution.

The flaw was corrected in hyper version 0.12.34.

See advisory page for additional details.

The text was updated successfully, but these errors were encountered:

adria0 closed this as completed Sep 18, 2020

alt229 mentioned this issue Nov 19, 2020

Openethereum crashing at block 11281279 #113

Closed

SirFrankieCrisp mentioned this issue Nov 25, 2020

Bugs when running openethereum after building on MacOS #128

Closed

winlin mentioned this issue Dec 3, 2020

Thread 'IO Worker #3' panicked at 'nonce will return Some when given BlockId::Latest. nonce was given BlockId::Latest. Therefore nonce has returned Some; #144

Closed

osoWP95 mentioned this issue Dec 11, 2020

Panic when synching #164

Closed

kvnryn mentioned this issue Dec 11, 2020

Thread 'http.worker00' panicked at 'State root of best block header always valid. #165

Closed

Arxis75 mentioned this issue Dec 18, 2020

Panicked at 'State root of best block header always valid' #187

Closed

SomethingUseful mentioned this issue Jan 6, 2021

DB corrupted: Invalid argument: You have to open all column families #217

Closed

Ufoton mentioned this issue May 19, 2021

Thread 'Worker Client3' panicked #412

Open

chrisicen added a commit to chrisicen/openethereum-unity that referenced this issue Apr 18, 2022

fix Unity bug openethereum#1

af94ba7

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

RUSTSEC-2020-0008: Flaw in hyper allows request smuggling by sending a body in GET requests #1

RUSTSEC-2020-0008: Flaw in hyper allows request smuggling by sending a body in GET requests #1

github-actions bot commented Jul 31, 2020

RUSTSEC-2020-0008: Flaw in hyper allows request smuggling by sending a body in GET requests #1

RUSTSEC-2020-0008: Flaw in hyper allows request smuggling by sending a body in GET requests #1

Comments

github-actions bot commented Jul 31, 2020