Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2022/08/09 7:15 a.m.1 views

CVE-2022-36125

It is possible to crash panic an application by providing a corrupted data to be read. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 previously known as avro-rs. Users should update to apache-avro version 0.14.0 which addresses this issue...

7.5CVSS5.7AI score0.01353EPSS
Exploits0References2
PyPA
PyPA
added 2022/08/09 7:15 a.m.7 views

PYSEC-2022-43180

It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 previously known as avro-rs. Users should update to apache-avro version 0.14.0 which addresses...

7.5CVSS7.1AI score0.01276EPSS
Exploits0References1
OSV
OSV
added 2022/08/09 7:15 a.m.7 views

CVE-2022-35724

It is possible to provide data to be read that leads the reader to loop in cycles endlessly, consuming CPU. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 previously known as avro-rs. Users should update to apache-avro version 0.14.0 which addresses this issue...

7.5CVSS5.7AI score0.01552EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/08/09 6:50 a.m.2 views

CVE-2022-36125 Integer overflow when reading corrupted .avro file in Avro Rust SDK

It is possible to crash panic an application by providing a corrupted data to be read. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 previously known as avro-rs. Users should update to apache-avro version 0.14.0 which addresses this issue...

5.7AI score0.01353EPSS
Exploits0References1
Rows per page
Query Builder