dtls package, versions <1.5.2

Attack Complexity

High

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

snyk-id

SNYK-GOLANG-GITHUBCOMPIONDTLS-567073
published

19 Apr 2020
disclosed

19 Apr 2020
credit

Usenix

Report a new vulnerability Found a mistake?

Introduced: 19 Apr 2020

CVE-2019-20786 Open this link in a new tab CWE-94 Open this link in a new tab

How to fix?

Upgrade github.com/pion/dtls to version 1.5.2 or higher.

Overview

github.com/pion/dtls is a DTLS 1.2 Server/Client implementation for Go.

Affected versions of this package are vulnerable to Remote Code Execution (RCE). handleIncomingPacket in conn.go lacks a check for application data with epoch 0, which allows remote attackers to inject arbitrary unencrypted data after handshake completion.

References

Analysis of DTLS Implementations Using Protocol State Fuzzing
GitHub Commit

Remote Code Execution (RCE) Affecting github.com/pion/dtls package, versions <1.5.2

Attack Complexity

snyk-id

published

disclosed

credit

Introduced: 19 Apr 2020

How to fix?

Overview

References