CVE-2023-4540 Information

Description

Improper Handling of Exceptional Conditions vulnerability in Daurnimator lua-http library allows Excessive Allocation and a denial of service (DoS) attack to be executed by sending a properly crafted request to the server.

This issue affects lua-http: all versions before commit ddab283.

Reference

https://github.com/daurnimator/lua-http/commit/ddab2835c583d45dec62680ca8d3cbde55e0bae6 https://cert.pl/posts/2023/09/CVE-2023-4540/