CVE-2017-1000118: Improper Restriction of Operations within the Bounds of a Memory Buffer

October 22, 2018 (updated September 10, 2021)

Akka HTTP versions <= 10.0.5 Illegal Media Range in Accept Header Causes StackOverflowError Leading to Denial of Service

References

github.com/advisories/GHSA-gfx6-ph4q-q54q
nvd.nist.gov/vuln/detail/CVE-2017-1000118

Code Behaviors & Features

Detect and mitigate CVE-2017-1000118 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →