blob: 59922af1b78fe6a5c4cc2e7e2d7290d4b70b63cf [file] [log] [blame]
id: GO-2024-2597
modules:
- module: github.com/authzed/spicedb
versions:
- fixed: 1.29.2
vulnerable_at: 1.29.1
summary: Integer overflow in chunking helper causes dispatching to miss elements or panic in github.com/authzed/spicedb
cves:
- CVE-2024-27101
ghsas:
- GHSA-h3m7-rqc4-7h9p
references:
- advisory: https://github.com/authzed/spicedb/security/advisories/GHSA-h3m7-rqc4-7h9p
- advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-27101
- fix: https://github.com/authzed/spicedb/commit/ef443c442b96909694390324a99849b0407007fe
source:
id: GHSA-h3m7-rqc4-7h9p
created: 2024-05-17T16:14:59.533653-04:00
review_status: UNREVIEWED