Skip to content

Commit

Permalink
cid: limit the maximum size of the retired CID set
Browse files Browse the repository at this point in the history 
Currently there's no limit to the size of the set storing retired CIDs.
This could be exploited by making the set grow to a large size leading
to a potential memory exhaustion.

Fixes CVE-2024-1410.
  • Loading branch information
@ghedo
ghedo committed Mar 12, 2024
1 parent abdf467 commit 0c5733a
Show file tree
Hide file tree
Showing 2 changed files with 267 additions and 78 deletions.
Loading

0 comments on commit 0c5733a

Please sign in to comment.