CVE-2024-14031

Sereal::Encoder versions from 4.000 through 4.009002 for Perl embeds a vulnerable version of the Zstandard library. Sereal::Encoder embeds a version of the Zstandard zstd library that is vulnerable to CVE-2019-11922. This is a race condition in the one-pass compression functions of Zstandard prio...

Sereal::Encoder 安全漏洞

Sereal::Encoder is a coding module developed by YVES’s individual developers, designed to convert data into high-performance binary serialization formats. Versions 4.000 to 4.009002 of Sereal::Encoder contain security vulnerabilities. These vulnerabilities stem from a buffer out-of-bounds write...

Sereal::Decoder 安全漏洞

Sereal::Decoder is a decoding module developed by YVES’s individual developers, designed for parsing high-performance binary serialization data formats. Versions 4.000 to 4.009002 of Sereal::Decoder contain security vulnerabilities. These vulnerabilities stem from a buffer out-of-bounds write fla...

The vulnerability of the Zstandard data compression library, related to the default access rights settings, allows attackers to gain access to confidential data.

The vulnerability of the Zstandard data compression library is related to the default access rights settings. Exploiting this vulnerability allows an attacker to gain access to confidential data...