CVE-2023-38632

Name of the Vulnerable Software and Affected Versions async-sockets-cpp versions 0.3.1 and earlier

Description The issue is a stack-based buffer overflow in the tcpsocket.hpp file when processing malformed TCP packets. This occurs due to improper handling of packet data, leading to a potential overflow.

Recommendations For versions 0.3.1 and earlier, consider restricting access to the tcpsocket.hpp file until a patch is available. As a temporary workaround, avoid using the async-sockets-cpp library with untrusted or potentially malicious TCP packet sources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.