github.com/kubeedge/kubeedge is vulnerable to denial of service. The vulnerability exists in ws.go
because the length of the response that is being read into memory is not properly handled which allows an attacker to send requests that return large responses causing a memory exhaustion which then leads to an application crash.
github.com/kubeedge/kubeedge/commit/327096ebe250185f1a4439394a7c027b72639cb3
github.com/kubeedge/kubeedge/commit/7420c09bb311099f61d79a051ce5446976b1ea4e
github.com/kubeedge/kubeedge/commit/8145284d40da35c493104abcf5667376c6f7e6b9
github.com/kubeedge/kubeedge/pull/4038
github.com/kubeedge/kubeedge/pull/4039
github.com/kubeedge/kubeedge/pull/4042
github.com/kubeedge/kubeedge/security/advisories/GHSA-6wvc-6pww-qr4r