blob: 276a0b6b03d772c3b3de58b421ba20fdd9b4aa9e [file] [log] [blame]
id: GO-2023-1535
modules:
- module: github.com/pion/dtls/v2
versions:
- fixed: 2.2.4
vulnerable_at: 2.2.3
packages:
- package: github.com/pion/dtls/v2/pkg/protocol/handshake
symbols:
- MessageServerHello.Unmarshal
derived_symbols:
- Handshake.Unmarshal
summary: Panic during unmarshal of Server Hello in github.com/pion/dtls/v2
description: Unmarshalling a Server Hello can panic, which could allow a denial of service.
ghsas:
- GHSA-hxp2-xqf3-v83h
references:
- fix: https://github.com/pion/dtls/commit/7a14903448b70069fd9e02adf210ca23083c56d2
review_status: REVIEWED