RSS   Vulnerabilities for 'Mcrouter'   RSS

2019-12-04
 
CVE-2019-11937

CWE-400
 

 
In Mcrouter prior to v0.41.0, a large struct input provided to the Carbon protocol reader could result in stack exhaustion and denial of service.

 
 
CVE-2019-11923

CWE-400
 

 
In Mcrouter prior to v0.41.0, the deprecated ASCII parser would allocate a buffer to a user-specified length with no maximum length enforced, allowing for resource exhaustion or denial of service.

 

 >>> Vendor: Facebook 26 Products
Messenger
Facebook
Photouploader
Facebook messenger
Suriname radio
Instaroid - instagram viewer
Hiphop virtual machine
HHVM
Proxygen
Thrift
React
BUCK
FIZZ
Wangle
Osquery
Zstandard
Facebook for woocommerce
Nuclide
Mcrouter
Folly
Instagram
Hermes
React-dev-utils
Gameroom
Mvfst
React-native


Copyright 2024, cxsecurity.com

 

Back to Top