Mageia 7 MGASA-2021-0270 Moderate: qtwebsockets5 DoS Threat

mageia

June 23, 2021

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages

Summary

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service (memory consumption) (CVE-2018-21035).

References

- https://bugs.mageia.org/show_bug.cgi?id=27560

- https://access.redhat.com/errata/RHSA-2020:4690

- https://www.cve.org/CVERecord?id=CVE-2018-21035

Topics Covered

security advisory DoS memory consumption Mageia qtwebsockets5

Resolution

SRPMS

- 7/core/qtwebsockets5-5.12.6-1.1.mga7

Publication date: 23 Jun 2021

URL: https://advisories.mageia.org/MGASA-2021-0270.html

Type: security

CVE: CVE-2018-21035

Topics Covered

security advisory DoS memory consumption Mageia qtwebsockets5

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 7 MGASA-2021-0270 Moderate: qtwebsockets5 DoS Threat

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 7 MGASA-2021-0270 Moderate: qtwebsockets5 DoS Threat

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!