REDHAT-BUG-1810964
First published: Fri Mar 06 2020(Updated: )
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service (memory consumption). Upstream Issue: <a href="https://bugreports.qt.io/browse/QTBUG-70693">https://bugreports.qt.io/browse/QTBUG-70693</a> Upstream Fix: <a href="https://codereview.qt-project.org/c/qt/qtwebsockets/+/284735">https://codereview.qt-project.org/c/qt/qtwebsockets/+/284735</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qt | <=5.14.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugreports.qt.io/browse/QTBUG-70693
- https://codereview.qt-project.org/c/qt/qtwebsockets/+/284735
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1810966
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1810965
- https://codereview.qt-project.org/gitweb?p=qt%2Fqtwebsockets.git;a=commit;h=ed93680f34e92ad0383aa4e610bb65689118ca93
- https://access.redhat.com/security/cve/cve-2018-21035
- https://access.redhat.com/errata/RHSA-2020:4690
- https://bugzilla.redhat.com/show_bug.cgi?id=1810964
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-21035
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/qt
- canonical/qt