Описание
Denial-of-Service within Docker container
Impact
If you run teler inside a Docker container and encounter errors.Exit function, it will cause denial-of-service (SIGSEGV) because it doesn't get process ID and process group ID of teler properly to kills.
Specific Go Packages Affected
ktbs.dev/teler/pkg/errors
Patches
Upgrade to the >= 0.0.1 version.
Workarounds
N/A
References
For more information
If you have any questions or comments about this advisory:
- Open an issue in Issues Section
- Email us at infosec@kitabisa.com
Пакеты
Наименование
ktbs.dev/teler
go
Затронутые версииВерсия исправления
< 0.0.1
0.0.1
Связанные уязвимости
CVSS3: 5.9
nvd
больше 5 лет назад
In teler before version 0.0.1, if you run teler inside a Docker container and encounter `errors.Exit` function, it will cause denial-of-service (`SIGSEGV`) because it doesn't get process ID and process group ID of teler properly to kills. The issue is patched in teler 0.0.1 and 0.0.1-dev5.1.