EUVD-2022-7573

Malicious code in bioql PyPI...

CVE-2022-2584

The dag-pb codec can panic when decoding invalid blocks...

CVE-2022-2584

The dag-pb codec can panic when decoding invalid blocks...

CVE-2022-2584

The dag-pb codec can panic when decoding invalid blocks...

Information disclosure

The dag-pb codec can panic when decoding invalid blocks...

CVE-2022-2584 Panic when decoding invalid blocks in github.com/ipld/go-codec-dagpb

The dag-pb codec can panic when decoding invalid blocks...

CVE-2022-2584

CVE-2022-2584 affects go-codec-dagpb (github.com/ipld/go-codec-dagpb). The dag-pb codec can panic when decoding invalid blocks, causing a potential DoS by crashing the application. The issue has been patched in version 1.3.1. Embed: affected component is the dag-pb codec; root cause is panic on i...

go-dagpb 缓冲区错误漏洞

go-dagpb is an IPLD open source implementation of the DAG-PB Go specification. A security vulnerability exists in go-dagpb that stems from the fact that the dag-pb codec may crash when decoding an invalid block...

PT-2022-17563 · Unknown · Go-Codec-Dagpb

Name of the Vulnerable Software and Affected Versions: go-codec-dagpb versions prior to 1.3.1 Description: The dag-pb codec can panic when decoding invalid blocks, due to an assumption that the reported link length is accurate. If the block ends before the reported length, it results in a buffer...