Facebook Fizz (CVE-2019-3560)
jkcso
released this
29 Nov 18:36
·
52 commits
to main
since this release
This CodeQL database captures a vulnerable snapshot of the Facebook Fizz integer overflow vulnerability (CVE-2019-3560). Fizz contained a remotely triggerable infinite loop. For more details about the bug, see this blog post. A proof-of-concept exploit is available here.