uWebSockets 19.0.0 through 20.8.0 has an out-of-bounds... · CVE-2021-45945 · GitHub Advisory Database · GitHub

uWebSockets 19.0.0 through 20.8.0 has an out-of-bounds...

Moderate severity Unreviewed Published Jan 2, 2022 to the GitHub Advisory Database • Updated Feb 3, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

uWebSockets 19.0.0 through 20.8.0 has an out-of-bounds write in std::__1::pair<unsigned int, void*> uWS::HttpParser::fenceAndConsumePostPadded<0 (called from uWS::HttpParser::consumePostPadded and std::__1::__function::__func<LLVMFuzzerTestOneInput::$_0, std::__1::allocator<LL).

References

Published by the National Vulnerability Database

Jan 1, 2022

Published to the GitHub Advisory Database Jan 2, 2022

Last updated Feb 3, 2023