Uploaded image for project: 'Undertow'
  1. Undertow
  2. UNDERTOW-2342

CVE-2023-4639 Ignore cookie with improper quotes

XMLWordPrintable

    A cookie header such as:
    RENDER_TEXT="b; JSESSIONID=1337; c=d" (3 cookies set by the browser) will be parsed as one cookie by the server

    RENDER_TEXT=b; JSESSIONID=1337; c=d

    instead of 3 separate cookies.

            rhn-cservice-bbaranow Bartosz Baranowski
            rhn-cservice-bbaranow Bartosz Baranowski
            Carlo de Wolf, Flavia Rainone
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: