Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
---|---|---|---|---|---|---|
CVE-2021-32640.patch | Fix ReDoS vulnerability A specially crafted value of the `Sec-Websocket-Protocol` header could be used to significantly slow down a ws server. . PoC and fix were sent privately by Robert McLaughlin from University of California, Santa Barbara. |
Luigi Pinca <luigipinca@gmail.com> | not-needed | upstream | upstream, https://github.com/websockets/ws/commit/00c425e | 2021-05-26 |