PT-2020-17623 · Parity Technologies · Libp2P-Deflate

Published

2020-01-24

Updated

2021-08-25

CVE-2020-36443

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libp2p-deflate crate versions prior to 0.27.1

Description An issue was discovered in the libp2p-deflate crate where an uninitialized buffer is passed to the AsyncRead::poll read() function, which is a user-provided trait function. This can lead to memory exposure and undefined behavior, as arbitrary implementations of AsyncRead::poll read() can read from the uninitialized buffer and return incorrect numbers of bytes written to the buffer.

Recommendations For versions prior to 0.27.1, update to version 0.27.1 or later to ensure the buffer is zero-initialized before being passed to the AsyncRead::poll read() function. As a temporary workaround, consider restricting the use of the AsyncRead::poll read() function until the issue is resolved.

Fix

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

CVE-2020-36443

GHSA-GVCP-948F-8F2P

RUSTSEC-2020-0123

Affected Products

Libp2P-Deflate

PT-2020-17623 · Parity Technologies · Libp2P-Deflate

CVE-2020-36443

Weakness Enumeration

Related Identifiers

Affected Products

References · 11