Skip to main content

Improper Handling of Exceptional Conditions


Severity High
Score 7.5/10


In certain conditions for Calico Typha, a client TLS handshake can block the Calico Typha server indefinitely, resulting in a Denial of Service (DOS). The TLS 'Handshake()' call is performed inside the main server handle for loop without any timeout, allowing an unclean TLS handshake to block the main loop indefinitely while other connections will be idle waiting for that handshake to finish. This vulnerability affects package versions through 3.25.1, and through 3.26.1, and

  • LOW
  • NONE
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-755 - Improper Handling of Exceptional Conditions

The software does not handle or incorrectly handles an exceptional condition.

Advisory Timeline

  • Published