GrepRules
Sign inPublish rule
Explore/cve-2026-26311-envoy-filter-manager-decode-missing-stop-check

CVE-2026-26311: Envoy Filter Manager Decode Missing Stop Check

A `FilterManager` decode method iterates over decoder filters using `commonDecodePrefix` without verifying if the filter chain was concurrently stopped. This creates a vulnerability window where incoming frames on a logically aborted or reset HTTP stream still invoke callbacks, potentially leading to a Use-After-Free (UAF) or state-corruption (Zombie Stream

Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0C++β
greprules fetch cve-2026-26311-envoy-filter-manager-decode-missing-stop-check --engine opengrep

Description

A `FilterManager` decode method iterates over decoder filters using `commonDecodePrefix` without verifying if the filter chain was concurrently stopped. This creates a vulnerability window where incoming frames on a logically aborted or reset HTTP stream still invoke callbacks, potentially leading to a Use-After-Free (UAF) or state-corruption (Zombie Stream

License
Apache-2.0
Source context
Public repository
Source
Provally CVE rule catalog
Validation status
Verified
Quality signals
145 downloads0 direct145 via packs
· 0 stars · Quality score 73How quality works
Included packs
2 packs