@fastify/websocket provides WebSocket support for Fastify. Any application using @fastify/websocket could crash if a specific, malformed packet is sent. All versions of fastify-websocket are also impacted. That module is deprecated, so it will not be patched. This has been patched in version 7.1.1 (fastify v4) and version 5.0.1 (fastify v3). There are currently no known workarounds. However, it should be possible to attach the error handler manually. The recommended path is upgrading to the patched versions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-11-08T00:00:00
Updated: 2024-08-03T12:07:41.884Z
Reserved: 2022-09-02T00:00:00
Link: CVE-2022-39386
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-11-08T22:15:15.953
Modified: 2024-11-21T07:18:11.297
Link: CVE-2022-39386
Redhat
No data.