Improper Handling of Exceptional Conditions vulnerability in Daurnimator lua-http library allows Excessive Allocation and a denial of service (DoS) attack to be executed by sending a properly crafted request to the server. Such a request causes the program to enter an infinite loop.
This issue affects lua-http: all versions before commit ddab283.
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Lua-http | Daurnimator | 0.4 (including) | 0.4 (including) |
| Lua-http | Ubuntu | bionic | * |
| Lua-http | Ubuntu | lunar | * |
| Lua-http | Ubuntu | mantic | * |
| Lua-http | Ubuntu | trusty | * |
| Lua-http | Ubuntu | xenial | * |