rayelliott/barrier

Author SHA1 Message Date

Author	SHA1	Message	Date
Povilas Kanapickas	ceecc61388	lib/server: Close connection when client app-level handshake fails This fixes the following security vulnerability: - CVE-2021-42075 DoS via file descriptor exhaustion The issue has been reported by Matthias Gerstner <mgerstner@suse.de>. (cherry picked from commit `deefecc262`)	2021-11-01 17:41:06 +02:00
Povilas Kanapickas	f546af4a85	lib: Enforce a maximum length of input messages This commit is the 1/3 part of the fix for the following security vulnerability: - CVE-2021-42076 DoS via excess length messages The issue has been reported by Matthias Gerstner <mgerstner@suse.de>. (cherry picked from commit `e33c81b835`)	2021-11-01 17:39:42 +02:00

Povilas Kanapickas

ceecc61388

lib/server: Close connection when client app-level handshake fails

This fixes the following security vulnerability:
 - CVE-2021-42075 DoS via file descriptor exhaustion

The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.

(cherry picked from commit deefecc262)

2021-11-01 17:41:06 +02:00

Povilas Kanapickas

f546af4a85

lib: Enforce a maximum length of input messages

This commit is the 1/3 part of the fix for the following security
vulnerability:
 - CVE-2021-42076 DoS via excess length messages

The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.

(cherry picked from commit e33c81b835)

2021-11-01 17:39:42 +02:00

2 Commits