[ https://issues.apache.org/jira/browse/THRIFT-5237?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17290220#comment-17290220 ]
Jens Geyer commented on THRIFT-5237: ------------------------------------ CVE-2020-13949: potential DoS when processing untrusted Thrift payloads > Implement MAX_MESSAGE_SIZE and consolidate limits into a TConfiguration class > ----------------------------------------------------------------------------- > > Key: THRIFT-5237 > URL: https://issues.apache.org/jira/browse/THRIFT-5237 > Project: Thrift > Issue Type: Improvement > Components: C glib - Library, C++ - Library, Java - Library > Reporter: Zezeng Wang > Assignee: Zezeng Wang > Priority: Major > Fix For: 0.14.0 > > Time Spent: 7.5h > Remaining Estimate: 0h > > This ticket has two related goals: > a) to implement a new limit for the maximum message size similar to max > frames size etc > b) consolidate and centralize all limits we have (max msg size,. max frame > size and max recursion depth) into one place in the code -- This message was sent by Atlassian Jira (v8.3.4#803005)