CVE-2015-5250: Improper Input Validation

December 20, 2021

The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.

References

github.com/advisories/GHSA-rf3m-mhv7-x39f
github.com/openshift/origin/commit/dace5075e31b74703e944b6b3ebe8836be8d1b9a
github.com/openshift/origin/issues/4374
nvd.nist.gov/vuln/detail/CVE-2015-5250
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5250

Detect and mitigate CVE-2015-5250 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →