CVE-2022-29224

Envoy is a cloud-native high-performance proxy. Versions of envoy prior to 1.22.1 are subject to a segmentation fault in the GrpcHealthCheckerImpl. Envoy can perform various types of upstream health checking. One of them uses gRPC. Envoy also has a feature which can “hold� (prevent removal) upstream hosts obtained via service discovery until configured active health checking fails. If an attacker controls an upstream host and also controls service discovery of that host (via DNS, the EDS API, etc.), an attacker can crash Envoy by forcing removal of the host from service discovery, and then failing the gRPC health check request. This will crash Envoy via a null pointer dereference. Users are advised to upgrade to resolve this vulnerability. Users unable to upgrade may disable gRPC health checking and/or replace it with a different health checking type as a mitigation.
Configurations

Configuration 1 (hide)

cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:58

Type Values Removed Values Added
References () https://github.com/envoyproxy/envoy/commit/9b1c3962172a972bc0359398af6daa3790bb59db - Patch () https://github.com/envoyproxy/envoy/commit/9b1c3962172a972bc0359398af6daa3790bb59db - Patch
References () https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49 - Third Party Advisory () https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49 - Third Party Advisory

16 Jun 2022, 17:46

Type Values Removed Values Added
CPE cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : 4.3
v3 : 5.9
References (CONFIRM) https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49 - (CONFIRM) https://github.com/envoyproxy/envoy/security/advisories/GHSA-m4j9-86g3-8f49 - Third Party Advisory
References (MISC) https://github.com/envoyproxy/envoy/commit/9b1c3962172a972bc0359398af6daa3790bb59db - (MISC) https://github.com/envoyproxy/envoy/commit/9b1c3962172a972bc0359398af6daa3790bb59db - Patch, Third Party Advisory

09 Jun 2022, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-06-09 19:15

Updated : 2024-11-21 06:58


NVD link : CVE-2022-29224

Mitre link : CVE-2022-29224

CVE.ORG link : CVE-2022-29224


JSON object : View

Products Affected

envoyproxy

  • envoy
CWE
CWE-476

NULL Pointer Dereference