Bug ID 1217807
Summary VUL-0: CVE-2023-47633: traefik: 100% CPU usage when self-serving as backend
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.6
Hardware Other
URL https://smash.suse.de/issue/386934/
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee alexandre.vicenzi@suse.com
Reporter smash_bz@suse.de
QA Contact security-team@suse.de
CC carlos.lopez@suse.com
Target Milestone ---
Found By Security Response Team
Blocker ---

Traefik is an open source HTTP reverse proxy and load balancer. The traefik
docker container uses 100% CPU when it serves as its own backend, which is an
automatically generated route resulting from the Docker integration in the
default configuration. This issue has been addressed in versions 2.10.6 and
3.0.0-beta5. Users are advised to upgrade. There are no known workarounds for
this vulnerability.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-47633


You are receiving this mail because: