Security Advisory

CVE-2021-3912

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-11 21:45:24

Last updated 2024-09-16 23:41:30

Assigner cloudflare

State PUBLISHED

Description

OctoRPKI tries to load the entire contents of a repository in memory, and in the case of a GZIP bomb, unzip it in memory, making it possible to create a repository that makes OctoRPKI run out of memory (and thus crash).

← Browse all CVEs View on cve.org ↗