GHSA-H6RJ-3M53-887H PocketMine-MP: LogDoS by large complex unknown property logging in clientData in LoginPacket

Impact Attackers can put large and/or complex structures as a value to an unknown property in the clientData JWT body in the Minecraft LoginPacket, causing the server to generate very long log messages. Additionally, the property name is logged without any length limitations or sanitization, whic...

PocketMine-MP: LogDoS by large complex unknown property logging in clientData in LoginPacket

Impact Attackers can put large and/or complex structures as a value to an unknown property in the clientData JWT body in the Minecraft LoginPacket, causing the server to generate very long log messages. Additionally, the property name is logged without any length limitations or sanitization, whic...

CVE-2022-26097

Null pointer dereference vulnerability in parserunknownproperty function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker...

CVE-2022-26097

Null pointer dereference vulnerability in parserunknownproperty function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker...