Actions
Security #5399
closedmqtt: DOS by quadratic with too many transactions in one parse
Git IDs:
Severity:
MODERATE
Disclosure Date:
Updated by Philippe Antoine over 2 years ago
- Status changed from New to Assigned
- Target version changed from TBD to 7.0.0-beta1
- Affected Versions 6.0.5 added
- Label Needs backport, Needs backport to 6.0 added
Fouad by oss-fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47934
One transaction is created out of 2 bytes when calling parsing with a 400 000 bytes input
Updated by Philippe Antoine over 2 years ago
- Related to Bug #4530: DOS Quadratic complexity when having too many transactions added
Updated by Victor Julien over 2 years ago
- Label deleted (
Needs backport, Needs backport to 6.0)
Updated by Victor Julien over 2 years ago
- Tracker changed from Bug to Security
- Severity set to MODERATE
Updated by Philippe Antoine over 2 years ago
- Status changed from In Review to Resolved
Updated by Philippe Antoine about 2 years ago
- Status changed from Resolved to Closed
Actions