CVE-2023-33953

Name of the Vulnerable Software and Affected Versions gRPC (affected versions not specified)

Description The issue allows hpack table accounting errors, which could lead to unwanted disconnects between clients and servers in exceptional cases. Three vectors were found that allow the following DOS attacks: unbounded memory buffering in the HPACK parser and unbounded CPU consumption in the HPACK parser. The unbounded CPU consumption is due to a copy that occurred per-input-block in the parser, resulting in an O(n^2) parsing loop, with n selected by the client. The unbounded memory buffering bugs include: the header size limit check being behind the string reading code, HPACK varints having an encoding quirk whereby an infinite number of 0’s can be added at the start of an integer, and gRPC’s metadata overflow check being performed per frame, allowing a sequence of frames to cause infinite buffering.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.