CVE-2019-11924

A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received, resulting in memory exhaustion. This issue affects versions v2019.01.28.00 and above of fizz, until v2019.08.05.00.
Configurations

Configuration 1 (hide)

cpe:2.3:a:facebook:fizz:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-08-20 20:15

Updated : 2024-02-04 20:20


NVD link : CVE-2019-11924

Mitre link : CVE-2019-11924

CVE.ORG link : CVE-2019-11924


JSON object : View

Products Affected

facebook

  • fizz
CWE
CWE-770

Allocation of Resources Without Limits or Throttling