CVE-2022-2529: Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package
sflow decode package does not employ sufficient packet sanitisation which can lead to a denial of service attack. Attackers can craft malformed packets causing the process to consume large amounts of memory resulting in a denial of service.
References
Detect and mitigate CVE-2022-2529 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →