Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: P2: Important
Fix Version/s: 5.6.0 RC
Affects Version/s: 5.5.0
Component/s: WebSockets
Labels:
None
Environment:
Tested on Xubuntu 14.04 with Qt 5.5.

Commits:
12e424f241b29ef26ad2a3a70740d8b320e9e85a

Description

QWebSocketServer is vulnerable to a DoS attack caused by improper parsing of WebSocket handshake. This happens because QWebSocketServer attempts to read from the client until a newline is encountered. If no newline is sent it will read data from the client until all available memory is consumed.

Addendum: when valid header lines are sent (terminated by CRLF), but when no blank line is sent (double CRLF), then the same behaviour occurs.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Kurt Pattyn

Reporter:: Kurt Pattyn

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 05 Sep '15 14:43

Updated:: 15 Feb '16 15:43

Resolved:: 06 Sep '15 18:27

Gerrit Reviews

There are no open Gerrit changes

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

Fix DoS vulnerability: Gerrit Review: