Fedora 40 : rust-rustls / rust-zlib-rs (2024-632b468c59)

The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-632b468c59 advisory. - Update the rustls crate to version 0.23.17. - Update the zlib-rs crate to version 0.4.0. The update to zlib-rs v0.4.0 also addresses CVE-2024-11249 stack...

Design/Logic Flaw

Http4s is a Scala interface for HTTP services. Starting with version 0.1.0 and prior to versions 0.21.34, 0.22.15, 0.23.17, and 1.0.0-M38, the User-Agent and Server header parsers are susceptible to a fatal error on certain inputs. In http4s, modeled headers are lazily parsed, so this only applie...

http4s 输入验证错误漏洞

http4s is an open source streaming HTTP server for Scala. An input validation error vulnerability exists in several versions of http4s, which stems from the fact that its User-Agent and Server header parsers are prone to fatal errors in processing certain input. The following versions are affecte...