Integer overflow in github.com/gorilla/websocket
High severity
GitHub Reviewed
Published
May 18, 2021
to the GitHub Advisory Database
•
Updated Nov 4, 2023
Description
Published by the National Vulnerability Database
Dec 2, 2020
Reviewed
May 18, 2021
Published to the GitHub Advisory Database
May 18, 2021
Last updated
Nov 4, 2023
An integer overflow vulnerability exists with the length of websocket frames received via a websocket connection. An attacker would use this flaw to cause a denial of service attack on an HTTP Server allowing websocket connections.
References