4 matches found
CVE-2022-36078
Binary provides encoding/decoding in Borsh and other formats. The vulnerability is a memory allocation vulnerability that can be exploited to allocate slices in memory with arbitrary excessive size value, which can either exhaust available memory or crash the whole program. When using...
CVE-2022-36078
Binary provides encoding/decoding in Borsh and other formats. The vulnerability is a memory allocation vulnerability that can be exploited to allocate slices in memory with arbitrary excessive size value, which can either exhaust available memory or crash the whole program. When using...
CVE-2022-36078 Slice Memory Allocation with Excessive Size Value in binary
Binary provides encoding/decoding in Borsh and other formats. The vulnerability is a memory allocation vulnerability that can be exploited to allocate slices in memory with arbitrary excessive size value, which can either exhaust available memory or crash the whole program. When using...
CVE-2022-36078
CVE-2022-36078 affects github.com/gagliardetto/binary. The memory-allocation vulnerability arises when decoding data into slices (e.g., via dec.Decode(&val)) where the slice length is read from input without proper bounds checks, enabling excessive memory allocation and potential DoS. The advisor...