Skip to content

Commit

Permalink
cid: limit the maximum size of the retired CID set
Browse files Browse the repository at this point in the history 
Currently there's no limit to the size of the set storing retired CIDs.
This could be exploited by making the set grow to a large size leading
to a potential memory exhaustion.

Fixes CVE-2024-1410.
  • Loading branch information
@ghedo
ghedo committed Mar 12, 2024
1 parent 7d16a61 commit e277fd9
Show file tree
Hide file tree
Showing 2 changed files with 267 additions and 78 deletions.
Loading

0 comments on commit e277fd9

Please sign in to comment.