CVE-2026-35405

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to 0.17.1, libp2p-rendezvous server has no limit on how many namespaces a single peer can register. A malicious peer can just keep registering unique namespaces in a loop and the server happily accepts...

CVE-2026-35405

CVE-2026-35405 (libp2p-rendezvous) : The Red Hat/NVD et al. documents describe a vulnerability in libp2p-rendezvous where the server has no limit on how many namespaces a single peer can register. As a result, a malicious or multiple sybil peers can repeatedly register unique namespaces, each reg...

CVE-2026-35405

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to 0.17.1, libp2p-rendezvous server has no limit on how many namespaces a single peer can register. A malicious peer can just keep registering unique namespaces in a loop and the server happily accepts...

CVE-2026-35405 libp2p-rendezvous: Unlimited namespace registrations per peer enables OOM DoS on rendezvous servers

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to 0.17.1, libp2p-rendezvous server has no limit on how many namespaces a single peer can register. A malicious peer can just keep registering unique namespaces in a loop and the server happily accepts...

rust-libp2p 安全漏洞

rust-libp2p is a Rust implementation of the libp2p open-source network stack. Prior to version 0.17.1, rust-libp2p had a security vulnerability. This vulnerability stemmed from the unlimited number of namespaces that rendezvous servers could register for individual peers, which could lead to memo...