CVE-2022-25891

Name of the Vulnerable Software and Affected Versions github.com/containrrr/shoutrrr/pkg/util versions prior to 0.6.0

Description The issue is related to a Denial of Service (DoS) that can be triggered via the util.PartitionMessage function by sending messages of exactly 2000, 4000, or 6000 characters in length. This can cause a panic when sending such a message to Discord.

Recommendations For versions prior to 0.6.0, update to version 0.6.0 or later to resolve the issue. As a temporary workaround, consider disabling the util.PartitionMessage function until a patch is available. Avoid sending messages of exactly 2000, 4000, or 6000 characters in length to minimize the risk of exploitation.