Categories ⋅ Keywords ⋅ Packages Advisories in category 'denial-of-service' March 24, 2023 RUSTSEC-2023-0024: Vulnerability in openssl openssl X509Extension::new and X509Extension::new_nid null pointer dereference February 14, 2023 HIGH RUSTSEC-2022-0090: Vulnerability in libsqlite3-sys libsqlite3-sys via C SQLite CVE-2022-35737 February 7, 2023 RUSTSEC-2023-0009: Vulnerability in openssl-src Use-after-free following BIO_new_NDEF February 7, 2023 RUSTSEC-2023-0011: Vulnerability in openssl-src Invalid pointer dereference in d2i_PKCS7 functions February 7, 2023 RUSTSEC-2023-0006: Vulnerability in openssl-src X.400 address type confusion in X.509 GeneralName February 7, 2023 RUSTSEC-2023-0008: Vulnerability in openssl-src X.509 Name Constraints Read Buffer Overflow February 7, 2023 RUSTSEC-2023-0012: Vulnerability in openssl-src NULL dereference validating DSA public key February 7, 2023 RUSTSEC-2023-0013: Vulnerability in openssl-src NULL dereference during PKCS7 data verification February 7, 2023 RUSTSEC-2023-0010: Vulnerability in openssl-src Double free after calling PEM_read_bio_ex February 2, 2023 RUSTSEC-2023-0004: Vulnerability in bzip2 bzip2 Denial of Service (DoS) February 2, 2023 HIGH RUSTSEC-2022-0084: Vulnerability in libp2p libp2p Lack of resource management DoS November 2, 2022 HIGH RUSTSEC-2022-0066: Vulnerability in conduit-hyper Denial of Service from unchecked request length November 1, 2022 RUSTSEC-2022-0065: Vulnerability in openssl-src X.509 Email Address Variable Length Buffer Overflow November 1, 2022 RUSTSEC-2022-0064: Vulnerability in openssl-src X.509 Email Address 4-byte Buffer Overflow September 13, 2022 RUSTSEC-2022-0055: Vulnerability in axum-core No default limit put on request bodies September 8, 2022 MEDIUM RUSTSEC-2021-0143: Vulnerability in kamadak-exif kamadak-exif DoS with untrusted PNG data August 2, 2022 HIGH RUSTSEC-2022-0038: Vulnerability in juniper Denial of service on deeply nested fragment requests August 2, 2022 HIGH RUSTSEC-2022-0037: Vulnerability in async-graphql Denial of service on deeply nested fragment requests August 1, 2022 RUSTSEC-2022-0035: Vulnerability in websocket Unbounded memory allocation based on untrusted length June 26, 2022 RUSTSEC-2022-0030: Vulnerability in rulex Stack overflow during recursive expression parsing June 26, 2022 RUSTSEC-2022-0031: Vulnerability in rulex Panic due to improper UTF-8 indexing May 19, 2022 HIGH RUSTSEC-2022-0025: Vulnerability in openssl-src Resource leakage when decoding certificates and keys March 16, 2022 RUSTSEC-2022-0014: Vulnerability in openssl-src Infinite loop in BN_mod_sqrt() reachable when parsing certificates March 8, 2022 HIGH RUSTSEC-2022-0013: Vulnerability in regex Regexes with large repetitions on empty sub-expressions take a very long time to parse January 21, 2022 RUSTSEC-2022-0004: Vulnerability in rustc-serialize Stack overflow in rustc_serialize when parsing deeply nested JSON December 15, 2021 RUSTSEC-2021-0129: Vulnerability in openssl-src Invalid handling of X509_verify_cert() internal errors in libssl November 18, 2021 RUSTSEC-2021-0125: Vulnerability in simple_asn1 Panic on incorrect date input to simple_asn1 August 24, 2021 HIGH RUSTSEC-2021-0098: Vulnerability in openssl-src Read buffer overruns processing ASN.1 strings August 22, 2021 RUSTSEC-2021-0089: Vulnerability in raw-cpuid Optional Deserialize implementations lacking validation July 8, 2021 RUSTSEC-2021-0073: Vulnerability in prost-types Conversion from prost_types::Timestamp to SystemTime can cause an overflow and panic May 12, 2021 RUSTSEC-2021-0066: Vulnerability in evm-core Denial of service on EVM execution due to memory over-allocation May 1, 2021 MEDIUM RUSTSEC-2021-0055: Vulnerability in openssl-src NULL pointer deref in signature_algorithms processing May 1, 2021 MEDIUM RUSTSEC-2021-0058: Vulnerability in openssl-src Null pointer deref in X509_issuer_and_serial_hash() May 1, 2021 HIGH RUSTSEC-2021-0057: Vulnerability in openssl-src Integer overflow in CipherUpdate March 25, 2021 HIGH RUSTSEC-2021-0041: Vulnerability in parse_duration Denial of service through parsing payloads with too big exponent January 24, 2021 RUSTSEC-2021-0013: Vulnerability in raw-cpuid Soundness issues in raw-cpuid November 29, 2020 MEDIUM RUSTSEC-2020-0075: Vulnerability in branca Unexpected panic when decoding tokens November 9, 2020 HIGH RUSTSEC-2020-0068: Vulnerability in multihash Unexpected panic in multihash from_slice parsing code October 31, 2020 MEDIUM RUSTSEC-2020-0061: Vulnerability in futures-task futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer October 2, 2020 CRITICAL RUSTSEC-2020-0002: Vulnerability in prost Parsing a specially crafted message can result in a stack overflow October 2, 2020 HIGH RUSTSEC-2020-0015: Vulnerability in openssl-src Crash causing Denial of Service attack October 2, 2020 HIGH RUSTSEC-2019-0033: Vulnerability in http Integer Overflow in HeaderMap::reserve() can cause Denial of Service October 2, 2020 RUSTSEC-2017-0006: Vulnerability in rmpv Unchecked vector pre-allocation October 2, 2020 HIGH RUSTSEC-2020-0043: Vulnerability in ws Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory October 2, 2020 HIGH RUSTSEC-2020-0001: Vulnerability in trust-dns-server Stack overflow when resolving additional records from MX or SRV null targets October 2, 2020 HIGH RUSTSEC-2019-0003: Vulnerability in protobuf Out of Memory in stream::read_raw_bytes_into() October 2, 2020 HIGH RUSTSEC-2020-0019: Vulnerability in tokio-rustls tokio-rustls reads may cause excessive memory usage October 2, 2020 CVE-2018-1000657: Vulnerability in std Buffer overflow vulnerability in VecDeque::reserve() October 2, 2020 CRITICAL CVE-2018-1000810: Vulnerability in std Buffer overflow vulnerability in str::repeat()