data/reports/GO-2022-0528.yaml - vulndb - Git at Google

 id: GO-2022-0528
 modules:
     - module: github.com/containrrr/shoutrrr
       versions:
         - fixed: 0.6.0
       vulnerable_at: 0.5.3
       packages:
         - package: github.com/containrrr/shoutrrr/pkg/util
           symbols:
             - PartitionMessage
 summary: Panic on crafted messages in github.com/containrrr/shoutrrr
 description: |-
     Sending a message exactly 2000, 4000, or 6000 characters in length to Discord
     causes a panic.
 published: 2022-07-30T03:51:17Z
 cves:
     - CVE-2022-25891
 ghsas:
     - GHSA-477v-w82m-634j
 credits:
     - justinsteven
 references:
     - fix: https://github.com/containrrr/shoutrrr/pull/242
     - fix: https://github.com/containrrr/shoutrrr/commit/6a27056f9d7522a8b493216195cb7634bf4b5c42
     - web: https://github.com/containrrr/shoutrrr/issues/240
 review_status: REVIEWED
	id: GO-2022-0528
	modules:
	- module: github.com/containrrr/shoutrrr
	versions:
	- fixed: 0.6.0
	vulnerable_at: 0.5.3
	packages:
	- package: github.com/containrrr/shoutrrr/pkg/util
	symbols:
	- PartitionMessage
	summary: Panic on crafted messages in github.com/containrrr/shoutrrr
	description: \|-
	Sending a message exactly 2000, 4000, or 6000 characters in length to Discord
	causes a panic.
	published: 2022-07-30T03:51:17Z
	cves:
	- CVE-2022-25891
	ghsas:
	- GHSA-477v-w82m-634j
	credits:
	- justinsteven
	references:
	- fix: https://github.com/containrrr/shoutrrr/pull/242
	- fix: https://github.com/containrrr/shoutrrr/commit/6a27056f9d7522a8b493216195cb7634bf4b5c42
	- web: https://github.com/containrrr/shoutrrr/issues/240
	review_status: REVIEWED