facebook/wangle

Releases501

Frequency1 week 1 day

Last Release 5 days ago

Stars3.1K

Wangle is a framework providing a set of common client/server abstractions for building services in a consistent, modular, and composable way.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-3563 ↗	Apr 29, 2019Monday, 29 April 2019, 16:29	9.8 CRITICAL	7.5 HIGH
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, leading to a potential underflow. This affects versions of Wangle prior to v2019.04.22.00
CVE-2019-3554 ↗	Jan 15, 2019Tuesday, 15 January 2019, 22:29	—	4.3 MEDIUM
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00