Intel/AIKIDO-2024-10307
laravel/octane
AIKIDO-2024-10307
laravel/octane is vulnerable to DoS
DoS Pre-CVE Published Oct 1, 2024
Found by Aikido Intel before public disclosure or CVE publication.
71
High Risk
This Affects:
laravel/octane0.1.0 - 2.5.5
Fixed in 2.5.6Are you affected? Scan for Free
TL;DR
Affected versions of the package are vulnerable to Denial of Service (DoS). Memory leaks or excessive memory retention occur, particularly during high-volume or large request processing in Laravel Octane when using the Swoole server (ConvertSwooleRequestToIlluminateRequest.php).
Who does this affect?
You are affected if you are using a version which is within vulnerability ranges and you are using the Swoole server.
Background info
laravel/octane is vulnerable to DoS in versions 0.1.0 - 2.5.5.
How to fix this
Upgrade the laravel/octane library to the patch version.
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
Resources
Industries
Use Cases
Compare
© 2026 Aikido Security BV | BE0792914919
Keizer Karelstraat 15, 9000, Ghent, Belgium
95 Third St, 2nd Fl, San Francisco, CA 94103, US
Unit 6.15 Runway East 18 18 Crucifix Ln, London SE1 3JW UK
Ghent, Belgium | San Francisco, US
SOC 2Compliant
ISO 27001Compliant