An issue was discovered in Barrier before 2.3.4. An attacker can cause memory exhaustion in the barriers component (aka the server-side implementation of Barrier) and barrierc by sending long TCP messages.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2021/11/02/4 | Exploit Mailing List Third Party Advisory |
https://github.com/debauchee/barrier/releases/tag/v2.3.4 | Release Notes Third Party Advisory |
Configurations
History
09 Nov 2021, 22:07
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:barrier_project:barrier:*:*:*:*:*:*:*:* | |
CWE | CWE-787 | |
References | (MISC) https://github.com/debauchee/barrier/releases/tag/v2.3.4 - Release Notes, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2021/11/02/4 - Exploit, Mailing List, Third Party Advisory |
08 Nov 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-08 04:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-42076
Mitre link : CVE-2021-42076
CVE.ORG link : CVE-2021-42076
JSON object : View
Products Affected
barrier_project
- barrier
CWE
CWE-787
Out-of-bounds Write