OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-23 15:38:27 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
d202965dcb9ec817e3aada50083fd62c799ee2ca
advisory-db/crates/ws/RUSTSEC-2020-0043.md
Brad Gibson 958120be0a Update RUSTSEC-2020-0043.md (#934) 
Version of `parity-ws` containing fix now correctly reads `>=0.10.0', not '>0.10.0' (0.10.0 is the latest as of this writing and contains the fix).
2021-06-07 23:06:52 +02:00

875 B
Raw Blame History 

[advisory]
id = "RUSTSEC-2020-0043"
package = "ws"
aliases = ["CVE-2020-35896"]
categories = ["denial-of-service"]
date = "2020-09-25"
keywords = ["websocket", "dos", "ddos", "oom", "memory", "remotely"]
url = "https://github.com/housleyjk/ws-rs/issues/291"

[versions]
patched = []

Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory

Affected versions of this crate did not properly check and cap the growth of the outgoing buffer.

This allows a remote attacker to take down the process by growing the buffer of their (single) connection until the process runs out of memory it can allocate and is killed.

The flaw was corrected in the parity-ws fork (>=0.10.0) by disconnecting a client when the buffer runs full.