9 matches found
CVE-2023-23626
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
IPFS go-bitfield vulnerable to DoS via malformed size arguments
Impact When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8 or is negative. There were already a note in the NewBitfield documentation: Panics if size is not a multiple ...
GHSA-2H6C-J3GF-XP9R IPFS go-bitfield vulnerable to DoS via malformed size arguments
Impact When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8 or is negative. There were already a note in the NewBitfield documentation: Panics if size is not a multiple ...
CVE-2023-23626
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
CVE-2023-23626
The CVE-2023-23626 issue affects go-bitfield, a Go bitfield package. The vulnerability arises when untrusted input is passed to the size parameter of NewBitfield and FromBytes, causing panics if size is negative or not a multiple of 8. Public advisories note this condition and recommend upgrading...
CVE-2023-23626 Denial of service when feeding malformed size arguments in go-bitfield
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
CVE-2023-23626 Denial of service when feeding malformed size arguments in go-bitfield
go-bitfield is a simple bitfield package for the go language aiming to be more performant that the standard library. When feeding untrusted user input into the size parameter of NewBitfield and FromBytes functions, an attacker can trigger panics. This happen when the size is a not a multiple of 8...
PT-2023-19086 · Unknown · Go-Bitfield
Name of the Vulnerable Software and Affected Versions: go-bitfield affected versions not specified Description: The issue arises when untrusted user input is fed into the size parameter of NewBitfield and FromBytes functions, allowing an attacker to trigger panics. This occurs when the size is no...
go-bitfield 代码问题漏洞
go-bitfield is a simple bitfield package from IPFS Open Source. A code issue vulnerability exists in versions prior to go-bitfield v1.1.0 that stems from an attacker being able to trigger a panic when entering untrusted users into the parameters of the NewBitfield and FromBytes functions...