Panic in mp3-metadata due to the lack of bounds checking

Denial of Service via malicious Web Push endpoint

Crash due to uncontrolled recursion in protobuf crate

Some AES functions may panic when overflow checking is enabled.

Denial of service because of stack overflow with malicious decompression input

BTreeMap memory leak when deallocating nodes with overflows

op_panic in the base runtime can force a panic in the runtime's containing thread

op_panic in the base runtime can force a panic in the runtime's containing thread

rustls network-reachable panic in Acceptor::accept

Remotely exploitable Denial of Service in Tonic

Endpoint::retry() calls can lead to panicking

Memory leak when calling a canister method via ic_cdk::call

phonenumber: panic on parsing crafted phonenumber inputs

CWA-2023-004: Excessive number of function parameters in compiled Wasm

CWA-2024-004: Gas mispricing in cosmwasm-vm

Low severity (DoS) vulnerability in sequoia-openpgp

Slow loris vulnerability with default configuration

rustls::ConnectionCommon::complete_io could fall into an infinite loop based on network input

Degradation of service in h2 servers with CONTINUATION Flood

HPACK decoder panics on invalid input

Stack buffer overflow with whoami on several Unix platforms

blurhash: panic on parsing crafted blurhash inputs

phonenumber: panic on parsing crafted RF3966 phonenumber inputs

Unauthenticated Nonce Increment in snow

Stack overflow during recursive JSON parsing

Memory corruption, denial of service, and arbitrary code execution in libgit2

Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

Remotely exploitable DoS condition in Rosenpass <=0.2.0

Infinite decoding loop through specially crafted payload

Tungstenite allows remote attackers to cause a denial of service

Denial of service in Quinn servers

BER/CER/DER decoder panics on invalid input

webpki: CPU denial of service in certificate path building

rustls-webpki: CPU denial of service in certificate path building

Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets

Out-of-bounds array access leads to panic

Out-of-bounds array access leads to panic

Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

openssl X509Extension::new and X509Extension::new_nid null pointer dereference

libsqlite3-sys via C SQLite CVE-2022-35737

Invalid pointer dereference in d2i_PKCS7 functions

X.509 Name Constraints Read Buffer Overflow

X.400 address type confusion in X.509 GeneralName

NULL dereference during PKCS7 data verification

Use-after-free following BIO_new_NDEF

Double free after calling PEM_read_bio_ex

NULL dereference validating DSA public key

bzip2 Denial of Service (DoS)

libp2p Lack of resource management DoS

Denial of Service from unchecked request length

X.509 Email Address Variable Length Buffer Overflow

X.509 Email Address 4-byte Buffer Overflow

No default limit put on request bodies

kamadak-exif DoS with untrusted PNG data

Denial of service on deeply nested fragment requests

Denial of service on deeply nested fragment requests

Unbounded memory allocation based on untrusted length

Stack overflow during recursive expression parsing

Panic due to improper UTF-8 indexing

Resource leakage when decoding certificates and keys

Infinite loop in BN_mod_sqrt() reachable when parsing certificates

Regexes with large repetitions on empty sub-expressions take a very long time to parse

Stack overflow in rustc_serialize when parsing deeply nested JSON

Invalid handling of X509_verify_cert() internal errors in libssl

Panic on incorrect date input to simple_asn1

Read buffer overruns processing ASN.1 strings

Optional Deserialize implementations lacking validation

Conversion from prost_types::Timestamp to SystemTime can cause an overflow and panic

Denial of service on EVM execution due to memory over-allocation

NULL pointer deref in signature_algorithms processing

Integer overflow in CipherUpdate

Null pointer deref in X509_issuer_and_serial_hash()

Denial of service through parsing payloads with too big exponent

Soundness issues in raw-cpuid

Unexpected panic when decoding tokens

Unexpected panic in multihash from_slice parsing code

futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer

tokio-rustls reads may cause excessive memory usage

Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory

Crash causing Denial of Service attack

Out of Memory in stream::read_raw_bytes_into()

Integer Overflow in HeaderMap::reserve() can cause Denial of Service

Parsing a specially crafted message can result in a stack overflow

Unchecked vector pre-allocation

Stack overflow when resolving additional records from MX or SRV null targets

Buffer overflow vulnerability in str::repeat()

Buffer overflow vulnerability in VecDeque::reserve()