HSEC-2026-0007 Denial of Service and Memory Exhaustion in aeson and text-iso8601

Denial of Service and Memory Exhaustion in aeson and text-iso8601 Two Denial of Service DoS and memory exhaustion vulnerabilities were identified in the aeson and text-iso8601 packages. These vulnerabilities allow an attacker to exhaust server memory and crash the host process by supplying...

CVE-2022-3433

The aeson library is not safe to use to consume untrusted JSON input. A remote user could abuse this flaw to produce a hash collision in the underlying unordered-containers library by sending specially crafted JSON data, resulting in a denial of service...

aeson 加密问题漏洞

aeson is a fast Haskell library open-sourced by Haskell for processing JSON data. A security vulnerability exists in aeson, which stems from the fact that it allows the use of untrusted JSON input to cause a denial of service by allowing a remote user to send specially crafted JSON data to create...