Lucene search
Veracode Vulnerability DatabaseVERACODE:35648HistoryMay 23, 2022 - 9:05 a.m.
Buffer Overflow
2022-05-2309:05:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
buffer overflow
github.com/pion/dtls
network traffic
memory usage
application crash
EPSS
0.004
Percentile
74.6%
github.com/pion/dtls is vulnerable to buffer overflow. The vulnerability exists in fragment_buffer.go because no upper limit of fragmentBuffer of network traffic is not defined which allows an attacker to cause an excessive memory usage which then leads to an application crash.
Related
cvelist
cvelist
CVE-2022-29189 Buffer for inbound DTLS fragments has no limit
2022-05-20 23:55:16
osv
osv
CVE-2022-29189
2022-05-21 00:15:11
Pion/DTLS contains buffer for inbound DTLS fragments with no limit
2022-05-24 22:04:38
Unbounded memory consumption in github.com/pion/dtls/v2
2022-07-01 20:07:25
github
github
Pion/DTLS contains buffer for inbound DTLS fragments with no limit
2022-05-24 22:04:38
nvd
nvd
CVE-2022-29189
2022-05-21 00:15:11
ubuntucve
ubuntucve
CVE-2022-29189
2022-05-21 00:00:00
cve
cve
CVE-2022-29189
2022-05-21 00:15:11
debiancve
debiancve
CVE-2022-29189
2022-05-21 00:15:11
prion
prion
Code injection
2022-05-21 00:15:00