6 matches found
ahecha (>=0.0.5 <=0.0.9), ahecha_html (>=0.0.2 <=0.0.8) +79 more potentially affected by CVE-2022-3212 via axum-core (=0.1.2)
axum-core CARGO version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on axum-core and may be impacted: - ahecha =0.0.5, =0.0.2, =0.0.2, =0.1.0, =3.0.14, =0.14.0, =0.33.0, =0.4.0, =0.1.0, =0.1.1 - axum-client-ip =0.1.0 - axum-core =0.2.0 and more...
axum-core has no default limit put on request bodies
::fromrequest would not, by default, set a limit for the size of the request body. That meant if a malicious peer would send a very large or infinite body your server might run out of memory and crash. This also applies to these extractors which used Bytes::fromrequest internally: -...
GHSA-M77F-652Q-WWP4 axum-core has no default limit put on request bodies
::fromrequest would not, by default, set a limit for the size of the request body. That meant if a malicious peer would send a very large or infinite body your server might run out of memory and crash. This also applies to these extractors which used Bytes::fromrequest internally: -...
CVE-2022-3212 DoS in axum-core due to missing request size limit
::fromrequest would not, by default, set a limit for the size of the request body. That meant if a malicious peer would send a very large or infinite body your server might run out of memory and crash. This also applies to these extractors which used Bytes::fromrequest internally:...
No default limit put on request bodies
::fromrequest would not, by default, set a limit for the size of the request body. That meant if a malicious peer would send a very large or infinite body your server might run out of memory and crash. This also applies to these extractors which used Bytes::fromrequest internally: -...
ahecha (>=0.0.5 <=0.0.9), ahecha_html (>=0.0.2 <=0.0.8) +79 more potentially affected by CVE-2022-3212 via axum-core (=0.1.2)
axum-core CARGO version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on axum-core and may be impacted: - ahecha =0.0.5, =0.0.2, =0.0.2, =0.1.0, =3.0.14, =0.14.0, =0.33.0, =0.4.0, =0.1.0, =0.1.1 - axum-client-ip =0.1.0 - axum-core =0.2.0 and more...