4 matches found
CVE-2023-23626
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
CVE-2023-23626 Denial of service when feeding malformed size arguments in go-bitfield
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
CVE-2023-23626
The CVE-2023-23626 issue affects go-bitfield, a Go bitfield package. The vulnerability arises when untrusted input is passed to the size parameter of NewBitfield and FromBytes, causing panics if size is negative or not a multiple of 8. Public advisories note this condition and recommend upgrading...
CVE-2023-23626 Denial of service when feeding malformed size arguments in go-bitfield
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...