Vulnerability Report: GO-2022-1083

  • CVE-2022-43677, GHSA-59hj-62f5-fgmc
  • Affects: github.com/free5gc/aper
  • Published: Nov 02, 2022
  • Modified: May 20, 2024

A malformed message can crash the free5gc/amf and free5gc/ngap decoders via an index-out-of-range panic in aper.GetBitString.

Affected Packages

Aliases

References

Credits

  • @fisherwky

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.