DoS due to excessively large websocket messagews
Affected versions of
ws do not appropriately limit the size of incoming websocket payloads, which may result in a denial of service condition when the node process crashes after receiving a large payload.
Update to version 1.1.1 or later.
Alternatively, set the
maxpayload option for the
ws server to a value smaller than 256MB.
publishedAdvisory publishedJun 24th, 2016
reportedInitial report by Fedor IndutnyJun 24th, 2016