libp2p

Top products

The 15 most recently published vulnerabilities affecting libp2p.

• CVE-2026-45783libp2p: Unvalidated PUT_VALUE records allow unbounded disk exhaustion on DHT server nodes7.5Jun 10, 2026
• CVE-2026-46679libp2p: Memory DoS via subscription flood of unique topics7.5Jun 10, 2026
• CVE-2026-35457libp2p-rust has unbounded rendezvous DISCOVER cookies enable remote memory exhaustion8.2Apr 7, 2026
• CVE-2026-35405libp2p-rendezvous: Unlimited namespace registrations per peer enables OOM DoS on rendezvous servers7.5Apr 7, 2026
• CVE-2026-34219libp2p-gossipsub: Gossipsub PRUNE Backoff Heartbeat Instant Overflow5.9Mar 31, 2026
• CVE-2026-33040libp2p-rust: Gossipsub PRUNE.backoff Duration Overflow7.5Mar 20, 2026
• CVE-2026-32314Yamux remote Panic via malformed Data frame with SYN set and len = 2621457.5Mar 13, 2026
• CVE-2026-31814Yamux remote Panic via malformed WindowUpdate credit7.5Mar 13, 2026
• CVE-2025-29606py-libp2p before 0.2.3 allows a peer to cause a denial of service (resource consumption) via a large RSA key.4.3Jul 14, 2025
• CVE-2024-32984Yamux Memory Exhaustion Vulnerability via Active::pending_frames property 7.5May 1, 2024
• CVE-2023-40583libp2p nodes vulnerable to OOM attack7.5Aug 25, 2023
• CVE-2023-39533libp2p nodes vulnerable to attack using large RSA keys7.5Aug 8, 2023
• CVE-2022-23492go-libp2p denial of service vulnerability from lack of resource management7.5Dec 8, 2022
• CVE-2022-23487libp2p denial of service vulnerability from lack of resource management7.5Dec 7, 2022
• CVE-2022-23486libp2p-rust denial of service vulnerability from lack of resource management7.5Dec 7, 2022