Tungstenite allows remote attackers to cause a denial of service

Denial of service in Quinn servers

BER/CER/DER decoder panics on invalid input

webpki: CPU denial of service in certificate path building

rustls-webpki: CPU denial of service in certificate path building

Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets

Out-of-bounds array access leads to panic

Out-of-bounds array access leads to panic

Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

openssl X509Extension::new and X509Extension::new_nid null pointer dereference

libsqlite3-sys via C SQLite CVE-2022-35737

X.509 Name Constraints Read Buffer Overflow

Invalid pointer dereference in d2i_PKCS7 functions

Double free after calling PEM_read_bio_ex

NULL dereference during PKCS7 data verification

X.400 address type confusion in X.509 GeneralName

NULL dereference validating DSA public key

Use-after-free following BIO_new_NDEF

bzip2 Denial of Service (DoS)

libp2p Lack of resource management DoS

Denial of Service from unchecked request length

X.509 Email Address 4-byte Buffer Overflow

X.509 Email Address Variable Length Buffer Overflow

No default limit put on request bodies

kamadak-exif DoS with untrusted PNG data

Denial of service on deeply nested fragment requests

Denial of service on deeply nested fragment requests

Unbounded memory allocation based on untrusted length

Panic due to improper UTF-8 indexing

Stack overflow during recursive expression parsing

Resource leakage when decoding certificates and keys

Infinite loop in BN_mod_sqrt() reachable when parsing certificates

Regexes with large repetitions on empty sub-expressions take a very long time to parse

Stack overflow in rustc_serialize when parsing deeply nested JSON

Invalid handling of X509_verify_cert() internal errors in libssl

Panic on incorrect date input to simple_asn1

Read buffer overruns processing ASN.1 strings

Optional Deserialize implementations lacking validation

Conversion from prost_types::Timestamp to SystemTime can cause an overflow and panic

Denial of service on EVM execution due to memory over-allocation

NULL pointer deref in signature_algorithms processing

Null pointer deref in X509_issuer_and_serial_hash()

Integer overflow in CipherUpdate

Denial of service through parsing payloads with too big exponent

Soundness issues in raw-cpuid

Unexpected panic when decoding tokens

Unexpected panic in multihash from_slice parsing code

futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer

Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory

Out of Memory in stream::read_raw_bytes_into()

Integer Overflow in HeaderMap::reserve() can cause Denial of Service

tokio-rustls reads may cause excessive memory usage

Stack overflow when resolving additional records from MX or SRV null targets

Unchecked vector pre-allocation

Parsing a specially crafted message can result in a stack overflow

Crash causing Denial of Service attack

Buffer overflow vulnerability in VecDeque::reserve()

Buffer overflow vulnerability in str::repeat()