MGASA-2021-0270

Source
https://advisories.mageia.org/MGASA-2021-0270.html
Import Source
https://advisories.mageia.org/MGASA-2021-0270.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2021-0270
Related
Published
2021-06-23T17:11:28Z
Modified
2021-06-23T15:23:13Z
Summary
Updated qtwebsockets5 packages fix a security vulnerability
Details

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service (memory consumption) (CVE-2018-21035).

References
Credits

Affected packages