Lucene search
GoogleOSV:GHSA-HV87-47H9-JCVQHistoryAug 25, 2021 - 8:43 p.m.
Uncontrolled recursion in rust-yaml
2021-08-2520:43:13
Google
osv.dev
5
rust
yaml
recursion
deserialization
security flaw
EPSS
0.001
Percentile
44.0%
Affected versions of this crate did not prevent deep recursion while deserializing data structures. This allows an attacker to make a YAML file with deeply nested structures that causes an abort while deserializing it. The flaw was corrected by checking the recursion depth.
Related
osv
osv
CVE-2018-20993
2019-08-26 13:15:11
Uncontrolled recursion leads to abort in deserialization
2018-09-17 12:00:00
github
github
Uncontrolled recursion in rust-yaml
2021-08-25 20:43:13
debiancve
debiancve
CVE-2018-20993
2019-08-26 13:15:11
nvd
nvd
CVE-2018-20993
2019-08-26 13:15:11
ubuntucve
ubuntucve
CVE-2018-20993
2019-08-26 00:00:00
rustsec
rustsec
Uncontrolled recursion leads to abort in deserialization
2018-09-17 12:00:00
cvelist
cvelist
CVE-2018-20993
2019-08-26 12:32:43
prion
prion
Deserialization of untrusted data
2019-08-26 13:15:00
cve
cve
CVE-2018-20993
2019-08-26 13:15:11