Candidate: CVE-2018-21035
PublicDate: 2020-02-28 21:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21035
 https://codereview.qt-project.org/c/qt/qtwebsockets/+/284735
Description:
 In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for
 frames and 2GB for messages. Smaller limits cannot be configured. This
 makes it easier for attackers to cause a denial of service (memory
 consumption).
Ubuntu-Description:
Notes:
 mdeslaur> upstream commit just adds new settings allowing users to lower
 mdeslaur> allowed frame/message size, it doesn't change the default
 mdeslaur> behaviour
Mitigation:
Bugs:
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953049
 https://bugreports.qt.io/browse/QTBUG-70693
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_qtwebsockets-opensource-src:
 upstream: https://github.com/qt/qtwebsockets/commit/ed93680f34e92ad0383aa4e610bb65689118ca93
upstream_qtwebsockets-opensource-src: needs-triage
precise/esm_qtwebsockets-opensource-src: DNE
trusty_qtwebsockets-opensource-src: ignored (out of standard support)
trusty/esm_qtwebsockets-opensource-src: DNE
xenial_qtwebsockets-opensource-src: ignored (end of standard support, was needs-triage)
bionic_qtwebsockets-opensource-src: needs-triage
eoan_qtwebsockets-opensource-src: ignored (reached end-of-life)
focal_qtwebsockets-opensource-src: needs-triage
groovy_qtwebsockets-opensource-src: ignored (reached end-of-life)
hirsute_qtwebsockets-opensource-src: not-affected (5.15.1-2)
impish_qtwebsockets-opensource-src: not-affected (5.15.1-2)
jammy_qtwebsockets-opensource-src: not-affected (5.15.1-2)
devel_qtwebsockets-opensource-src: not-affected (5.15.1-2)