CVE-2019-3560

CVE-2019-3560

Vendor Facebook

Product fizz

Weakness CWE-835

Published April 29, 2019

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00.

Key dates

02Disclosure timeline

April 29, 2019 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-3560 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/835.html

Related vulnerabilities

Identifiers

CVE CVE-2019-3560

CWE CWE-835

Affected versions

Vendor Facebook

Product fizz

Affected v2019.03.04.00

Vendor Facebook

Product fizz

Affected ≥ unspecified and < v2019.03.04.00

01Description

02Disclosure timeline

03References

04Related CVE