GMS-2016-63: Denial of Service

August 26, 2016

Specifically crafted MQTT packets can crash the application, making a DoS attack feasible with very little bandwidth.

References

github.com/mqttjs/MQTT.js/blob/388a084d7803934b18b43c1146c817deaa1396b1/lib/parse.js

Code Behaviors & Features

Detect and mitigate GMS-2016-63 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →