Temotopublished

**Name of the Vulnerable Software and Affected Versions** Eventlet versions prior to 0.31.0 **Description** The issue is related to the handling of large websocket frames in the Eventlet library, which can lead to memory exhaustion. A malicious peer can exploit this by sending highly compressed data frames, potentially causing a denial of service. The estimated number of potentially affected devices is not provided. **Recommendations** For versions prior to 0.31.0, update to version 0.31.0 to restrict websocket frames to reasonable limits. As a temporary workaround, consider restricting memory usage via OS limits to help against overall machine exhaustion, although this will not protect the Eventlet process itself.