CVE-2021-42074

Published: 08/11/2021 Updated: 09/11/2021

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

An issue exists in Barrier prior to 2.3.4. An unauthenticated attacker can cause a segmentation fault in the barriers component (aka the server-side implementation of Barrier) by quickly opening and closing TCP connections while sending a Hello message for each TCP session.

Vulnerable Product	Search on Vulmon	Subscribe to Product
barrier project barrier

A security issue has been found in Barrier before version 234 When quickly opening and closing socket connections while sending a Hello message for each session then this will lead to a segmentation fault (probably use after free) This allows for a simple way to DoS the barrier server for an unauthenticated remote client Further research of th ...

Hello list, recently the Barrier project [1] published new releases that address a couple of security issues I reported to them Following is the full review report I shared with upstream on 2021-07-30 Attached to this email is a tarball containing reproducer scripts that are mentioned in the report [1]: githubcom/debauchee/barrier I ...

CWE-416 http://www.openwall.com/lists/oss-security/2021/11/02/4 https://github.com/debauchee/barrier/releases/tag/v2.3.4 https://nvd.nist.gov http://seclists.org/oss-sec/2021/q4/87 https://security.archlinux.org/CVE-2021-42074

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-42074

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect