Paolo Insogna
|
2e6de554f6
|
http: disable request smuggling via empty headers
PR-URL: https://github.com/nodejs-private/node-private/pull/427
Fixes: https://hackerone.com/reports/2001873
Refs: https://github.com/nodejs-private/llhttp-private/pull/13
Reviewed-By: Matteo Collina <matteo.collina@gmail.com>
CVE-ID: CVE-2023-30589
|
2023-06-20 17:30:48 -03:00 |
|