Candidate: CVE-2019-0205
PublicDate: 2019-10-29 19:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0205
 https://www.openwall.com/lists/oss-security/2019/10/17/1
Description:
 In Apache Thrift all versions up to and including 0.12.0, a server or
 client may run into an endless loop when feed with specific input data.
 Because the issue had already been partially fixed in version 0.11.0,
 depending on the installed version it affects only certain language
 bindings.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by: Hasnain Lakhani
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_thrift:
upstream_thrift: needs-triage
precise/esm_thrift: DNE
trusty_thrift: ignored (out of standard support)
trusty/esm_thrift: DNE
xenial_thrift: DNE
bionic_thrift: DNE
disco_thrift: DNE
eoan_thrift: ignored (reached end-of-life)
focal_thrift: not-affected (0.13.0-2build1)
devel_thrift: not-affected (0.13.0-2build1)