What the vulnerability does

01Description

An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability.

Key dates

02Disclosure timeline

April 1, 2021 CVE published
August 3, 2024 Record updated