Facebook Fizz
By the Year
In 2023 there have been 0 vulnerabilities in Facebook Fizz . Fizz did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 2 | 7.50 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Fizz vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Facebook Fizz Security Vulnerabilities
A peer could send empty handshake fragments containing only padding
CVE-2019-11924
7.5 - High
- August 20, 2019
A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received, resulting in memory exhaustion. This issue affects versions v2019.01.28.00 and above of fizz, until v2019.08.05.00.
Allocation of Resources Without Limits or Throttling
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input
CVE-2019-3560
7.5 - High
- April 29, 2019
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00.
Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Facebook Fizz or by Facebook? Click the Watch button to subscribe.
