CVE-2018-1000518: Uncontrolled Resource Consumption
(updated )
websockets improperly handles highly compressed data in Servers and clients unless configured with compression=None
. This vulnerability can result in a Denial of Service by memory exhaustion.
References
Detect and mitigate CVE-2018-1000518 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →