An issue was discovered in the parse_duration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service (CPU and memory consumption) via a duration string with a large exponent.
CPE | Name | Operator | Version |
---|---|---|---|
parse_duration | eq | <= 2021318 |