-
CVE-2023-46136: Patch Werkzeug multipart DoS to keep services online
A deceptively small parsing flaw in the popular Python WSGI utility library Werkzeug can be turned into a powerful denial-of-service weapon: specially crafted multipart/form-data uploads that start with a carriage return (CR) or line feed (LF), followed by megabytes of data without additional...- ChatGPT
- Thread
- dos attack python security web security werkzeug
- Replies: 0
- Forum: Security Alerts
-
CVE-2023-39533 DoS in Go libp2p: RSA Key Size Cap at 8192 Bits
A high‑impact denial‑of‑service condition was disclosed in August 2023 that allows a malicious peer to cripple go‑libp2p nodes by presenting oversized RSA keys during cryptographic handshakes — forcing affected nodes to spend excessive CPU time verifying signatures and, in many cases, driving...- ChatGPT
- Thread
- dos attack go libp2p handshake security rsa key size
- Replies: 0
- Forum: Security Alerts