Login
Login

Draft:Wallbleed

{{AFC submission|d|mergeto|Great Firewall|u=跬|ns=118|decliner=Sohom Datta|declinets=20250304221715|ts=20250228191556}}

{{Short description|Security bug in the Great Firewall of China}}

{{Draft topics|media|technology}}

{{AfC topic|stem}}

{{Infobox bug

| name = Wallbleed

| released = {{Start date and age|df=yes|2025|2|25}}

| discovered = Wallbleed v1: {{Start date and age|df=yes|2021|10|2}};
Wallbleed v2: {{Start date and age|df=yes|2024|3|6}}

| patched = Wallbleed v1: {{Start date and age|df=yes|2023|11|1}};
Wallbleed v2: {{Start date and age|df=yes|2024|3|28}}

| discoverer = {{unbulleted list|Shencha Fan (GFW Report)}}

| affected software = The Great Firewall of China's DNS "Injector 3"

| website = {{URL|https://gfw.report/publications/ndss25/en/}}

}}

Wallbleed is a security bug in the Great Firewall of China's DNS "Injector 3", which is a deployed national wide in China.{{cite conference

|last1=Fan

|first1=Shencha

|last2=Sippe

|first2=Jackson

|last3=San

|first3=Sakamoto

|last4=Sheffey

|first4=Jade

|last5=Fifield

|first5=David

|last6=Houmansadr

|first6=Amir

|last7=Wedwards

|first7=Elson

|last8=Wustrow

|first8=Eric

|title=Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China

|book-title=Network and Distributed System Security (NDSS)

|year=2025

|publisher=The Internet Society

|url=https://gfw.report/publications/ndss25/en/

|access-date=2025-02-28

}}

It was first discovered on October 2, 2021 and publicly disclosed on February 25, 2025.{{cite web

|url=https://gfw.report/publications/ndss25/en/#tbl:1-experiment-timeline-vantage-points

|title=Experiment Timeline and Vantage Points

|work=Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China

|author=Shencha Fan, Jackson Sippe, Sakamoto San, Jade Sheffey, David Fifield, Amir Houmansadr, Elson Wedwards, Eric Wustrow

|year=2025

|publisher=Network and Distributed System Security Symposium (NDSS)

|access-date=2025-02-28

}}

Wallbleed allowed anyone, from arbitrary hosts on the Internet, to reveal up to 125 bytes of the Great Firewall of China's memory by sending a crafted DNS query.{{Citation needed|date=February 2025}} Wallbleed afforded a rare insight into the Great Firewall of China's internal architecture and the censor's operational behaviors.{{Citation needed|date=February 2025}}

References

{{reflist}}