CVE-2020-36406

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

uWebSockets buffer overflow vulnerability

uWebSockets is a highly extensible library of the lightest and most efficient WebSocket servers. It features an easy-to-use, fully asynchronous object-oriented interface and scales to millions of connections using a fraction of the memory compared to other competing products. uWebSockets versions...

CVE-2020-36406

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

CVE-2020-36406

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

Stack overflow

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

CVE-2020-36406

uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree called from uWS::TopicTree::unsubscribeAll. NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the developer of an application that uses uWebSockets should no...

CVE-2020-36406

CVE-2020-36406 affects uWebSockets versions 18.11.0–18.12.0, with a stack-based buffer overflow in the internal function uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). The issue is repeatedly triggered by high topic accumulation and is disputed by the vendor as minor or no...

uWebSockets 缓冲区错误漏洞

uWebSockets is a highly extensible library of the lightest and most efficient WebSocket servers. It features an easy-to-use, fully asynchronous object-oriented interface and scales to millions of connections using a fraction of the memory compared to other competing products. uWebSockets versions...

PT-2021-12045 · Unknown · Uwebsockets

Name of the Vulnerable Software and Affected Versions: uWebSockets versions 18.11.0 through 18.12.0 Description: The issue is related to a stack-based buffer overflow in the uWS::TopicTree::trimTree function, which is called from uWS::TopicTree::unsubscribeAll. The vendor disputes the severity of...

uwebsockets:PerMessageDeflate: Use-of-uninitialized-value in std::__1::__function::__func<LLVMFuzzerTestOneInput::$_0, std::__1::allocator<LL

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5726045371891712 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: PerMessageDeflate Job Type: libfuzzermsanuwebsockets Platform Id: linux Crash Type: Use-of-uninitialized-value...

uwebsockets:TopicTree: Index-out-of-bounds in uWS::TopicTree::publish

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5766688937869312 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: TopicTree Job Type: libfuzzerubsanuwebsockets Platform Id: linux Crash Type: Index-out-of-bounds Crash Address:...

uwebsockets:TopicTree: Stack-buffer-overflow in uWS::TopicTree::trimTree

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=4864981424930816 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: TopicTree Job Type: libfuzzerasanuwebsockets Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 8 Crash...

uwebsockets:TopicTree: Index-out-of-bounds in uWS::TopicTree::publish

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5926030899150848 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: TopicTree Job Type: libfuzzerubsanuwebsockets Platform Id: linux Crash Type: Index-out-of-bounds Crash Address:...

uwebsockets:TopicTree: Segv on unknown address in std::__1::__tree<std::__1::__value_type<unsigned int, std::__1::pair<std::__1::b

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=4796114929451008 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: TopicTree Job Type: libfuzzerasanuwebsockets Platform Id: linux Crash Type: Segv on unknown address Crash Address...

uwebsockets:EpollHelloWorld: Use-of-uninitialized-value in us_internal_dispatch_ready_poll

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5751984421076992 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: EpollHelloWorld Job Type: libfuzzermsanuwebsockets Platform Id: linux Crash Type: Use-of-uninitialized-value Cras...

uwebsockets:PerMessageDeflate: Use-of-uninitialized-value in slide_hash

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5629572998234112 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: PerMessageDeflate Job Type: libfuzzermsanuwebsockets Platform Id: linux Crash Type: Use-of-uninitialized-value...

uwebsockets:MockedEchoServer: Use-of-uninitialized-value in longest_match

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5370327463624704 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: MockedEchoServer Job Type: libfuzzermsanuwebsockets Platform Id: linux Crash Type: Use-of-uninitialized-value Cra...

uwebsockets:MockedBroadcastingEchoServer: Heap-buffer-overflow in uWS::TopicTree::publish

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5725321316007936 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: MockedBroadcastingEchoServer Job Type: libfuzzerasanuwebsockets Platform Id: linux Crash Type: Heap-buffer-overfl...

uwebsockets:MockedBroadcastingEchoServer: Heap-buffer-overflow in uWS::TopicTree::publish

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5719648561790976 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: MockedBroadcastingEchoServer Job Type: libfuzzerasanuwebsockets Platform Id: linux Crash Type: Heap-buffer-overfl...

uwebsockets:MockedEchoServer: Crash in fu2::abi_400::detail::type_erasure::invocation_table::function_trait<void

Project: https://github.com/uNetworking/uWebSockets.git Detailed Report: https://oss-fuzz.com/testcase?key=5700237029277696 Project: uwebsockets Fuzzing Engine: libFuzzer Fuzz Target: MockedEchoServer Job Type: libfuzzerasanuwebsockets Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address:...