Skip to content
This repository has been archived by the owner on Jun 27, 2023. It is now read-only.

DOS HAMT Decoding Panics

Moderate
Jorropo published GHSA-q264-w97q-q778 Feb 9, 2023

Package

gomod github.com/ipfs/go-unixfs (Go)

Affected versions

< 0.4.3

Patched versions

0.4.3

Description

Impact

Trying to read malformed HAMT sharded directories can cause panics and virtual memory leaks.
If you are reading untrusted user input, an attacker can then trigger a panic.

This is caused by bogus fanout parameter in the HAMT directory nodes.
This include checks returned in ipfs/go-bitfield GHSA-2h6c-j3gf-xp9r, as well as limiting the fanout to <= 1024 (to avoid attempts of arbitrary sized allocations).

Patches

Workarounds

Do not feed untrusted user data to the decoding functions.

References

Severity

Moderate

CVE ID

CVE-2023-23625

Weaknesses

No CWEs

Credits