{"id":"CVE-2023-23759","details":"There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be triggered remotely. This behavior requires the client supported cipher advertisement changing between the original ClientHello and the second ClientHello, crashing the process (impact is limited to denial of service).","modified":"2026-05-19T03:52:06.739269948Z","published":"2023-05-18T21:21:02.735Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/23xxx/CVE-2023-23759.json","cna_assigner":"facebook"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/23xxx/CVE-2023-23759.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-23759"},{"type":"ADVISORY","url":"https://www.facebook.com/security/advisories/cve-2023-23759"},{"type":"FIX","url":"https://github.com/facebookincubator/fizz/commit/8d3649841597bedfb6986c30431ebad0eb215265"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/facebookincubator/fizz","events":[{"introduced":"0"},{"fixed":"378232e895c5ef87559127424ca5c6459b8a0abb"}]}],"versions":["v2023.01.23.00","v2023.01.16.00","v2023.01.09.00","v2023.01.02.00","v2022.12.26.00","v2022.12.19.00","v2022.12.12.00","v2022.12.05.00","v2022.11.28.00","v2022.11.14.00","v2022.11.07.00","v2022.10.31.00","v2022.10.24.00","v2022.10.17.00","v2022.10.10.00","v2022.10.03.00","v2022.09.26.00","v2022.09.19.00","v2022.09.12.00","v2022.09.05.00","v2022.08.29.00","v2022.08.22.00","v2022.08.15.00","v2022.08.08.00","v2022.08.01.00","v2022.07.25.00","v2022.07.18.00","v2022.07.11.00","v2022.07.04.00","v2022.06.27.00","v2022.06.20.00","v2022.06.13.00","v2022.06.06.00","v2022.05.30.00","v2022.05.23.00","v2022.05.16.00","v2022.05.09.00","v2022.05.02.00","v2022.04.25.00","v2022.04.18.00","v2022.04.11.00","v2022.04.04.00","v2022.03.28.00","v2022.03.21.00","v2022.03.14.00","v2022.03.07.00","v2022.02.28.00","v2022.02.21.00","v2022.02.14.00","v2022.02.07.00","v2022.01.31.00","v2022.01.24.00","v2022.01.17.00","v2022.01.10.00","v2022.01.03.00","v2021.12.27.00","v2021.12.20.00","v2021.12.13.00","v2021.12.06.00","v2021.11.29.00","v2021.11.15.00","v2021.11.08.00","v2021.11.01.00","v2021.10.25.00","v2021.10.18.00","v2021.10.11.00","v2021.10.04.00","v2021.09.27.00","v2021.09.20.00","v2021.09.13.00","v2021.09.06.00","v2021.08.30.00","v2021.08.23.00","v2021.08.02.00","v2021.07.22.00","v2021.07.20.00","v2021.07.19.00","v2021.07.12.00","v2021.07.05.00","v2021.06.28.00","v2021.06.21.00","v2021.06.14.00","v2021.06.07.00","v2021.05.31.00","v2021.05.24.00","v2021.05.17.00","v2021.05.10.00","v2021.05.03.00","v2021.04.26.00","v2021.04.19.00","v2021.04.12.00","v2021.04.05.00","v2021.03.29.00","v2021.03.22.00","v2021.03.15.00","v2021.03.08.00","v2021.03.01.00","v2021.02.22.00","v2021.02.15.00","v2021.02.08.00","v2021.02.01.00","v2021.01.25.00","v2021.01.18.00","v2021.01.11.00","v2021.01.04.00","v2020.12.28.00","v2020.12.21.00","v2020.12.14.00","v2020.12.07.00","v2020.11.30.00","v2020.11.23.00","v2020.11.16.00","v2020.11.09.00","v2020.11.02.00","v2020.10.26.00","v2020.10.19.00","v2020.10.12.00","v2020.10.05.00","v2020.09.28.00","v2020.09.21.00","v2020.09.14.00","v2020.09.07.00","v2020.08.31.00","v2020.08.24.00","v2020.08.17.00","v2020.08.10.00","v2020.08.03.00","v2020.07.27.00","v2020.07.20.00","v2020.07.13.00","v2020.07.06.00","v2020.06.29.00","v2020.06.15.00","v2020.06.08.00","v2020.06.01.00","v2020.05.25.00","v2020.05.18.00","v2020.05.11.00","v2020.05.04.00","v2020.04.27.00","v2020.04.20.00","v2020.04.13.00","v2020.04.06.00","v2020.03.30.00","v2020.03.23.00","v2020.03.16.00","v2020.03.09.00","v2020.03.02.00","v2020.02.24.00","v2020.02.17.00","v2020.02.10.00","v2020.02.03.00","v2020.01.27.00","v2020.01.20.00","v2020.01.13.00","v2020.01.06.00","v2019.12.30.00","v2019.12.23.00","v2019.12.16.00","v2019.12.09.00","v2019.12.06.00","v2019.12.02.00","v2019.11.11.00","v2019.11.04.00","v2019.10.28.00","v2019.10.21.00","v2019.10.14.00","v2019.10.07.00","v2019.09.30.00","v2019.09.23.00","v2019.09.16.00","v2019.09.09.00","v2019.09.02.00","v2019.08.26.00","v2019.08.19.00","v2019.08.12.00","v2019.08.05.00","v2019.07.29.00","v2019.07.22.00","v2019.07.15.00","v2019.07.08.00","v2019.07.01.00","v2019.06.24.00","v2019.06.17.00","v2019.06.10.00","v2019.06.03.00","v2019.05.27.00","v2019.05.20.00","v2019.05.13.00","v2019.05.06.00","v2019.04.29.00","v2019.04.22.00","v2019.04.15.00","v2019.04.08.00","v2019.04.01.00","v2019.03.25.00","v2019.03.18.00","v2019.03.04.00","v2019.02.25.00","v2019.02.18.00","v2019.02.11.00","v2019.02.04.00","v2019.01.28.00","v2019.01.21.00","v2019.01.14.00","v2019.01.07.00","v2018.12.31.00","v2018.12.24.00","v2018.12.17.00","v2018.12.10.00","v2018.12.03.00","v2018.11.26.00","v2018.11.19.00","v2018.11.12.00","v2018.11.05.00","v2018.10.29.00","v2018.10.22.00","v2018.10.15.00","v2018.10.08.00","v2018.10.01.00","v2018.09.24.00"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-23759.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}